Edit tour

Windows Analysis Report
https://www.eventcreate.com/e/11-7-24-raleigh-11th-hou-614158

Overview

General Information

Sample URL:	https://www.eventcreate.com/e/11-7-24-raleigh-11th-hou-614158
Analysis ID:	1540566

Detection

Score:	1
Range:	0 - 100
Whitelisted:	false
Confidence:	80%

Signatures

HTML page contains hidden javascript code

Stores files to the Windows start menu directory

Classification

Process Tree

System is w10x64_ra

chrome.exe (PID: 6492 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 6924 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2168 --field-trial-handle=1952,i,13414633786881541129,14033781888254798113,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8 MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

chrome.exe (PID: 6660 cmdline: "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://www.eventcreate.com/e/11-7-24-raleigh-11th-hou-614158" MD5: 45DE480806D1B5D462A7DDE4DCEFC4E4)

cleanup

Yara Signatures

⊘No yara matches

Sigma Signatures

⊘No Sigma rule has matched

Suricata Signatures

⊘No Suricata rule has matched

Joe Sandbox Signatures

Click to jump to signature section

Show All Signature Results

There are no malicious signatures, click here to show all signatures.

Source: https://www.eventcreate.com/e/11-7-24-raleigh-11th-hou-614158

HTTP Parser: Base64 decoded: 1729716493.000000

Source: https://www.eventcreate.com/e/11-7-24-raleigh-11th-hou-614158	HTTP Parser: No favicon
Source: https://checkout.eventcreate.com/11-7-24-raleigh-11th-hou-614158/register-details?oid=384e8ae7-a9d0-486d-91dd-3f11895a5308	HTTP Parser: No favicon

Source: unknown	HTTPS traffic detected: 20.109.210.53:443 -> 192.168.2.16:49749 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.109.210.53:443 -> 192.168.2.16:49817 version: TLS 1.2

Source: chrome.exe

Memory has grown: Private usage: 17MB later: 30MB

Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown	TCP traffic detected without corresponding DNS query: 204.79.197.203
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 192.229.211.108
Source: unknown	TCP traffic detected without corresponding DNS query: 20.189.173.10
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1
Source: unknown	UDP traffic detected without corresponding DNS query: 1.1.1.1

Source: global traffic	DNS traffic detected: DNS query: www.eventcreate.com
Source: global traffic	DNS traffic detected: DNS query: use.typekit.net
Source: global traffic	DNS traffic detected: DNS query: cdn-4.convertexperiments.com
Source: global traffic	DNS traffic detected: DNS query: eventcreate-v1.s3.us-west-1.amazonaws.com
Source: global traffic	DNS traffic detected: DNS query: p.typekit.net
Source: global traffic	DNS traffic detected: DNS query: cdnjs.cloudflare.com
Source: global traffic	DNS traffic detected: DNS query: www.google.com
Source: global traffic	DNS traffic detected: DNS query: plausible.io
Source: global traffic	DNS traffic detected: DNS query: script.tapfiliate.com
Source: global traffic	DNS traffic detected: DNS query: connect.facebook.net
Source: global traffic	DNS traffic detected: DNS query: res.cloudinary.com
Source: global traffic	DNS traffic detected: DNS query: googleads.g.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: td.doubleclick.net
Source: global traffic	DNS traffic detected: DNS query: www.facebook.com
Source: global traffic	DNS traffic detected: DNS query: checkout.eventcreate.com

Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49744
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49865
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49743
Source: unknown	Network traffic detected: HTTP traffic on port 49817 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49742
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49863
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49741
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49862
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49740
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49860
Source: unknown	Network traffic detected: HTTP traffic on port 49766 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49743 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49875 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49852 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49738
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49859
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49737
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49736
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49857
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49735
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49856
Source: unknown	Network traffic detected: HTTP traffic on port 49772 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49855
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49733
Source: unknown	Network traffic detected: HTTP traffic on port 49841 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49854
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49853
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49852
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49730
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49851
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49850
Source: unknown	Network traffic detected: HTTP traffic on port 49749 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49806 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49823 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49777 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49728
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49849
Source: unknown	Network traffic detected: HTTP traffic on port 49714 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49727
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49848
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49726
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49847
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49725
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49846
Source: unknown	Network traffic detected: HTTP traffic on port 49790 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49845
Source: unknown	Network traffic detected: HTTP traffic on port 49869 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49844
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49722
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49843
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49721
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49842
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49841
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49840
Source: unknown	Network traffic detected: HTTP traffic on port 49834 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49760 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49828 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49839
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49838
Source: unknown	Network traffic detected: HTTP traffic on port 49715 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49847 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49715
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49714
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49835
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49713
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49834
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49712
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49833
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49832
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49710
Source: unknown	Network traffic detected: HTTP traffic on port 49709 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49831
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49830
Source: unknown	Network traffic detected: HTTP traffic on port 49839 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49822 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49726 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49870 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49853 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49796 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49709
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49828
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49827
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49826
Source: unknown	Network traffic detected: HTTP traffic on port 49754 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49825
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49824
Source: unknown	Network traffic detected: HTTP traffic on port 49737 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49823
Source: unknown	Network traffic detected: HTTP traffic on port 49771 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49822
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49788
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49787
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49782
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49780
Source: unknown	Network traffic detected: HTTP traffic on port 49713 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49845 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49791 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49736 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49868 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49759 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49753 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49779
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49777
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49773
Source: unknown	Network traffic detected: HTTP traffic on port 49862 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49772
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49771
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49770
Source: unknown	Network traffic detected: HTTP traffic on port 49742 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49780 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49802 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49851 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49830 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49768
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49766
Source: unknown	Network traffic detected: HTTP traffic on port 49758 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49764
Source: unknown	Network traffic detected: HTTP traffic on port 49863 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49760
Source: unknown	Network traffic detected: HTTP traffic on port 49840 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49725 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49741 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49857 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49764 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49770 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49797 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49801 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49824 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49759
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49758
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49756
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49877
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49755
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49876
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49754
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49875
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49753
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49874
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49752
Source: unknown	Network traffic detected: HTTP traffic on port 49730 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49751
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49872
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49750
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49871
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49870
Source: unknown	Network traffic detected: HTTP traffic on port 49835 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49874 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49747 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49749
Source: unknown	Network traffic detected: HTTP traffic on port 49846 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49869
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49747
Source: unknown	Network traffic detected: HTTP traffic on port 49792 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49868
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49746
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49867
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49745
Source: unknown	Network traffic detected: HTTP traffic on port 49746 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49803 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49826 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49849 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49872 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49728 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49855 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49752 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49798 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49735 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49712 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49819 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49844 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49787 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49745 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49850 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49831 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49751 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49782 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49798
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49797
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49796
Source: unknown	Network traffic detected: HTTP traffic on port 49814 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49792
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49791
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49790
Source: unknown	Network traffic detected: HTTP traffic on port 49740 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49856 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49768 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49825 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49808 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49867 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49733 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49821
Source: unknown	Network traffic detected: HTTP traffic on port 49865 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49710 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49842 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49779 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49727 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49859 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49871 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49833 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49819
Source: unknown	Network traffic detected: HTTP traffic on port 49810 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49817
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49814
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49810
Source: unknown	Network traffic detected: HTTP traffic on port 49788 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49721 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49827 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49876 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49809
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49808
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49806
Source: unknown	Network traffic detected: HTTP traffic on port 49848 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49773 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49803
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49802
Source: unknown	Network traffic detected: HTTP traffic on port 443 -> 49801
Source: unknown	Network traffic detected: HTTP traffic on port 49756 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49838 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49678 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49821 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49877 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49722 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49854 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49809 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49860 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49755 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49738 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49673 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49843 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49744 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49832 -> 443
Source: unknown	Network traffic detected: HTTP traffic on port 49750 -> 443

Source: unknown	HTTPS traffic detected: 20.109.210.53:443 -> 192.168.2.16:49749 version: TLS 1.2
Source: unknown	HTTPS traffic detected: 20.109.210.53:443 -> 192.168.2.16:49817 version: TLS 1.2

Source: classification engine

Classification label: clean1.win@18/78@84/452

Source: C:\Program Files\Google\Chrome\Application\chrome.exe

File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps

Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2168 --field-trial-handle=1952,i,13414633786881541129,14033781888254798113,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: unknown	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" "https://www.eventcreate.com/e/11-7-24-raleigh-11th-hou-614158"
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: C:\Program Files\Google\Chrome\Application\chrome.exe "C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US --service-sandbox-type=none --mojo-platform-channel-handle=2168 --field-trial-handle=1952,i,13414633786881541129,14033781888254798113,262144 --disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction /prefetch:8
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	Process created: unknown unknown

Source: Window Recorder

Window detected: More than 3 window changes detected

Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
Source: C:\Program Files\Google\Chrome\Application\chrome.exe	File created: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk

Mitre Att&ck Matrix

Reconnaissance	Resource Development	Initial Access	Execution	Persistence	Privilege Escalation	Defense Evasion	Credential Access	Discovery	Lateral Movement	Collection	Command and Control	Exfiltration	Impact
Gather Victim Identity Information	Acquire Infrastructure	Valid Accounts	Windows Management Instrumentation	1 Registry Run Keys / Startup Folder	1 Process Injection	1 Masquerading	OS Credential Dumping	System Service Discovery	Remote Services	Data from Local System	2 Encrypted Channel	Exfiltration Over Other Network Medium	Abuse Accessibility Features
Credentials	Domains	Default Accounts	Scheduled Task/Job	Boot or Logon Initialization Scripts	1 Registry Run Keys / Startup Folder	1 Process Injection	LSASS Memory	Application Window Discovery	Remote Desktop Protocol	Data from Removable Media	1 Non-Application Layer Protocol	Exfiltration Over Bluetooth	Network Denial of Service
Email Addresses	DNS Server	Domain Accounts	At	Logon Script (Windows)	1 Extra Window Memory Injection	1 Extra Window Memory Injection	Security Account Manager	Query Registry	SMB/Windows Admin Shares	Data from Network Shared Drive	2 Application Layer Protocol	Automated Exfiltration	Data Encrypted for Impact

Screenshots

Thumbnails

This section contains all screenshots as thumbnails, including those not shown in the slideshow.

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

⊘No Antivirus matches

Dropped Files

⊘No Antivirus matches

Unpacked PE Files

⊘No Antivirus matches

Domains

⊘No Antivirus matches

URLs

⊘No Antivirus matches

Domains and IPs

Contacted Domains

Name	IP	Active	Malicious	Reputation
plausible.io	169.150.236.105	true	false	unknown
star-mini.c10r.facebook.com	157.240.0.35	true	false	unknown
scontent.xx.fbcdn.net	157.240.253.1	true	false	unknown
googleads.g.doubleclick.net	142.250.186.34	true	false	unknown
cdnjs.cloudflare.com	104.17.25.14	true	false	unknown
script.tapfiliate.com	13.32.121.127	true	false	unknown
www.google.com	216.58.206.36	true	false	unknown
td.doubleclick.net	142.250.185.162	true	false	unknown
checkout.eventcreate.com	104.18.13.16	true	false	unknown
s3-r-w.us-west-1.amazonaws.com	52.219.113.122	true	false	unknown
www.eventcreate.com	104.18.12.16	true	false	unknown
ax-0001.ax-msedge.net	150.171.27.10	true	false	unknown
eventcreate-v1.s3.us-west-1.amazonaws.com	unknown	unknown	false	unknown
use.typekit.net	unknown	unknown	false	unknown
res.cloudinary.com	unknown	unknown	false	unknown
www.facebook.com	unknown	unknown	false	unknown
connect.facebook.net	unknown	unknown	false	unknown
p.typekit.net	unknown	unknown	false	unknown
cdn-4.convertexperiments.com	unknown	unknown	false	unknown

Contacted URLs

Name	Malicious	Antivirus Detection	Reputation
https://checkout.eventcreate.com/11-7-24-raleigh-11th-hou-614158/register-details?oid=384e8ae7-a9d0-486d-91dd-3f11895a5308	false		unknown
https://www.eventcreate.com/e/11-7-24-raleigh-11th-hou-614158	false		unknown

World Map of Contacted IPs

No. of IPs < 25%
25% < No. of IPs < 50%
50% < No. of IPs < 75%
75% < No. of IPs

Public IPs

IP	Domain	Country	ASN	ASN Name	Malicious
13.32.121.127	script.tapfiliate.com	United States	16509	AMAZON-02US	false
216.58.212.142	unknown	United States	15169	GOOGLEUS	false
23.201.242.112	unknown	United States	16625	AKAMAI-ASUS	false
169.150.247.38	unknown	United States	2711	SPIRITTEL-ASUS	false
142.250.185.227	unknown	United States	15169	GOOGLEUS	false
142.250.185.106	unknown	United States	15169	GOOGLEUS	false
142.250.186.72	unknown	United States	15169	GOOGLEUS	false
104.18.13.16	checkout.eventcreate.com	United States	13335	CLOUDFLARENETUS	false
52.219.113.122	s3-r-w.us-west-1.amazonaws.com	United States	16509	AMAZON-02US	false
216.239.32.178	unknown	United States	15169	GOOGLEUS	false
142.250.184.195	unknown	United States	15169	GOOGLEUS	false
142.250.186.34	googleads.g.doubleclick.net	United States	15169	GOOGLEUS	false
142.250.184.196	unknown	United States	15169	GOOGLEUS	false
1.1.1.1	unknown	Australia	13335	CLOUDFLARENETUS	false
3.5.163.130	unknown	United States	16509	AMAZON-02US	false
157.240.0.35	star-mini.c10r.facebook.com	United States	32934	FACEBOOKUS	false
169.150.236.105	plausible.io	United States	2711	SPIRITTEL-ASUS	false
2.19.126.198	unknown	European Union	16625	AKAMAI-ASUS	false
239.255.255.250	unknown	Reserved	unknown	unknown	false
142.250.185.196	unknown	United States	15169	GOOGLEUS	false
142.250.184.238	unknown	United States	15169	GOOGLEUS	false
104.18.12.16	www.eventcreate.com	United States	13335	CLOUDFLARENETUS	false
172.217.16.195	unknown	United States	15169	GOOGLEUS	false
104.17.25.14	cdnjs.cloudflare.com	United States	13335	CLOUDFLARENETUS	false
2.19.224.32	unknown	European Union	16625	AKAMAI-ASUS	false
142.250.185.206	unknown	United States	15169	GOOGLEUS	false
216.58.206.74	unknown	United States	15169	GOOGLEUS	false
142.250.186.174	unknown	United States	15169	GOOGLEUS	false
142.250.186.130	unknown	United States	15169	GOOGLEUS	false
216.58.206.34	unknown	United States	15169	GOOGLEUS	false
216.58.206.36	www.google.com	United States	15169	GOOGLEUS	false
157.240.0.6	unknown	United States	32934	FACEBOOKUS	false
18.239.36.116	unknown	United States	16509	AMAZON-02US	false
150.171.28.10	unknown	United States	8075	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
142.250.185.162	td.doubleclick.net	United States	15169	GOOGLEUS	false
157.240.252.35	unknown	United States	32934	FACEBOOKUS	false
142.250.186.136	unknown	United States	15169	GOOGLEUS	false
142.250.184.202	unknown	United States	15169	GOOGLEUS	false
142.250.110.84	unknown	United States	15169	GOOGLEUS	false
104.17.24.14	unknown	United States	13335	CLOUDFLARENETUS	false
216.58.212.132	unknown	United States	15169	GOOGLEUS	false
2.19.126.219	unknown	European Union	16625	AKAMAI-ASUS	false
150.171.27.10	ax-0001.ax-msedge.net	United States	8075	MICROSOFT-CORP-MSN-AS-BLOCKUS	false
157.240.251.9	unknown	United States	32934	FACEBOOKUS	false
142.250.185.170	unknown	United States	15169	GOOGLEUS	false
142.250.185.130	unknown	United States	15169	GOOGLEUS	false
157.240.253.1	scontent.xx.fbcdn.net	United States	32934	FACEBOOKUS	false
157.240.251.35	unknown	United States	32934	FACEBOOKUS	false

Private

IP
192.168.2.16

General Information

Joe Sandbox version:	41.0.0 Charoite
Analysis ID:	1540566
Start date and time:	2024-10-23 22:47:36 +02:00
Joe Sandbox product:	CloudBasic
Overall analysis duration:
Hypervisor based Inspection enabled:	false
Report type:	full
Cookbook file name:	defaultwindowsinteractivecookbook.jbs
Sample URL:	https://www.eventcreate.com/e/11-7-24-raleigh-11th-hou-614158
Analysis system description:	Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Number of analysed new started processes analysed:	12
Number of new started drivers analysed:	0
Number of existing processes analysed:	0
Number of existing drivers analysed:	0
Number of injected processes analysed:	0
Technologies:	EGA enabled
Analysis Mode:	stream
Analysis stop reason:	Timeout
Detection:	CLEAN
Classification:	clean1.win@18/78@84/452

Warnings

Exclude process from analysis (whitelisted): SgrmBroker.exe, svchost.exe
Excluded IPs from analysis (whitelisted): 172.217.16.195, 142.250.184.238, 142.250.110.84, 184.28.90.27, 34.104.35.123
Excluded domains from analysis (whitelisted): clients2.google.com, fs.microsoft.com, accounts.google.com, edgedl.me.gvt1.com, e16604.g.akamaiedge.net, clientservices.googleapis.com, clients.l.google.com, prod.fs.microsoft.com.akadns.net, fs-wildcard.microsoft.com.edgekey.net, fs-wildcard.microsoft.com.edgekey.net.globalredir.akadns.net
Not all processes where analyzed, report is missing behavior information
VT rate limit hit for: https://www.eventcreate.com/e/11-7-24-raleigh-11th-hou-614158

LLM Input / Output

Input	Output
URL: https://www.eventcreate.com/e/11-7-24-raleigh-11th-hou-614158 Model: claude-3-haiku-20240307	```json { "contains_trigger_text": true, "trigger_text": "Register To Save Your Seat!", "prominent_button_name": "Register Now!", "text_input_field_labels": "unknown", "pdf_icon_visible": false, "has_visible_captcha": false, "has_urgent_text": true, "has_visible_qrcode": false }

URL: https://www.eventcreate.com/e/11-7-24-raleigh-11th-hou-614158 Model: claude-3-haiku-20240307	```json { "contains_trigger_text": true, "trigger_text": "Register To Save Your Seat!", "prominent_button_name": "Register Now!", "text_input_field_labels": "unknown", "pdf_icon_visible": false, "has_visible_captcha": false, "has_urgent_text": true, "has_visible_qrcode": false }

URL: https://www.eventcreate.com/e/11-7-24-raleigh-11th-hou-614158 Model: claude-3-haiku-20240307	```json { "contains_trigger_text": true, "trigger_text": "Register To Save Your Seat!", "prominent_button_name": "Register Now!", "text_input_field_labels": "unknown", "pdf_icon_visible": false, "has_visible_captcha": false, "has_urgent_text": true, "has_visible_qrcode": false }

URL: https://www.eventcreate.com/e/11-7-24-raleigh-11th-hou-614158 Model: claude-3-haiku-20240307	```json { "brands": [ "The StateView Hotel" ] }
	```json { "brands": [ "The StateView Hotel" ] }
URL: https://www.eventcreate.com/e/11-7-24-raleigh-11th-hou-614158 Model: claude-3-haiku-20240307	```json { "contains_trigger_text": true, "trigger_text": "Please be sure to select all the classes you plan to attend. The classes listed below are also on the registration form.", "prominent_button_name": "unknown", "text_input_field_labels": "unknown", "pdf_icon_visible": false, "has_visible_captcha": false, "has_urgent_text": false, "has_visible_qrcode": false }

URL: https://www.eventcreate.com/e/11-7-24-raleigh-11th-hou-614158 Model: claude-3-haiku-20240307	```json { "brands": [] }
	```json { "brands": [] }
URL: https://www.eventcreate.com/e/11-7-24-raleigh-11th-hou-614158 Model: claude-3-haiku-20240307	```json { "brands": [ "StateView Hotel" ] }
	```json { "brands": [ "StateView Hotel" ] }
URL: https://www.eventcreate.com/e/11-7-24-raleigh-11th-hou-614158 Model: claude-3-haiku-20240307	```json { "brands": [ "Petra", "Hoffman Building Technologies", "General Water Systems", "Taco Comfort Solutions", "Hoffman & Hoffman" ] }

URL: https://checkout.eventcreate.com/11-7-24-raleigh-11th-hou-614158/register-details?oid=384e8ae7-a9d0-486d-91dd-3f11895a5308 Model: claude-3-haiku-20240307	```json { "contains_trigger_text": false, "trigger_text": "unknown", "prominent_button_name": "Go back to event home", "text_input_field_labels": "unknown", "pdf_icon_visible": false, "has_visible_captcha": false, "has_urgent_text": false, "has_visible_qrcode": false }

URL: https://checkout.eventcreate.com/11-7-24-raleigh-11th-hou-614158/register-details?oid=384e8ae7-a9d0-486d-91dd-3f11895a5308 Model: claude-3-haiku-20240307	```json { "brands": [ "Raleigh" ] }
	```json { "brands": [ "Raleigh" ] }

Created / dropped Files

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 23 19:48:12 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
Category:	dropped
Size (bytes):	2673
Entropy (8bit):	3.9866294953889936
Encrypted:	false
SSDEEP:
MD5:	85CB5BE7ADC4CCF6AEB54EBE8E4AD6D4
SHA1:	B68CD4917A5712F67AD25162A07CC67253C3B575
SHA-256:	5F18D12EA80FE25ABFF4EFC206FFDECAA4A9203AE36328B88BD35603C7419B35
SHA-512:	32F2EA2B7C53F51E715C618C5862C7B59FB398B046B69F19D18290583C5FEBDD8F950889E0E8C1CE2596F960F2B5DF6B27A5695420A7E423216CFE7C8C4B3993
Malicious:	false
Reputation:	unknown
Preview:	L..................F.@.. ...$+.,.....!>..%..N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....FW.J..PROGRA~1..t......O.IWY......B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.VWY......L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.VWY......M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.VWY............................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.VWY.............................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i...........Z.A.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e..C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 23 19:48:12 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
Category:	dropped
Size (bytes):	2675
Entropy (8bit):	4.00206443417886
Encrypted:	false
SSDEEP:
MD5:	AB4978F530684DF77278D15EB15E2458
SHA1:	52753FD12DD5B6EBB9BB262B2D9CFEEBB10F5ECB
SHA-256:	7E2CA641D4DA9602DD46CF77B1B3CE4FC7086F611BECED6D5F0070529C2F5EFB
SHA-512:	66846050D643E1B70E7995AA0812F6B381D6F48F8F2DF78471A89FE64A74C618C8272929C30E6F7F794A1BCE2C65F9D7BD9BF0ABCFF4365050766D5F8C90D915
Malicious:	false
Reputation:	unknown
Preview:	L..................F.@.. ...$+.,....../..%..N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....FW.J..PROGRA~1..t......O.IWY......B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.VWY......L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.VWY......M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.VWY............................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.VWY.............................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i...........Z.A.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e..C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 6 08:05:01 2023, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
Category:	dropped
Size (bytes):	2689
Entropy (8bit):	4.0095722251888315
Encrypted:	false
SSDEEP:
MD5:	399FF3D27BC14138E4019D974CED9515
SHA1:	F7DE4A4EA5794F9C777EBAE375434052090769D6
SHA-256:	845BCA99DE1B2A5B5EAD6D5FC885D03DC1D5326B6811B906871B37C43C2DD36D
SHA-512:	67C4A1958105C620C10C76398CB5C333B90482EEE427A211A1D7024A6FCACCA374A47C4146A7D6735C2AB0CE66DB990DB720660821047AE03E5EB6F811A93C91
Malicious:	false
Reputation:	unknown
Preview:	L..................F.@.. ...$+.,.....Y.04...N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....FW.J..PROGRA~1..t......O.IWY......B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.VWY......L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.VWY......M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.VWY............................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.VFW.E...........................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i...........Z.A.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e..C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 23 19:48:12 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
Category:	dropped
Size (bytes):	2677
Entropy (8bit):	4.00040965381978
Encrypted:	false
SSDEEP:
MD5:	C0DC64DBBC9B22919E927822F46D1566
SHA1:	C4DD4BDF0ADFF200BCE1690D8CF1EE6AD369AA87
SHA-256:	D1076FDA43613AB8E3E5C86020BD6B3CB81D8DD5475F2C7B2051009801D346C8
SHA-512:	CDC765C5BF7A85DDF628CE48516A44625C88CB609B789B2696872100312445E848384114B2730827DF8EF50A19E52791D328B6E559693840C101C5C691903A11
Malicious:	false
Reputation:	unknown
Preview:	L..................F.@.. ...$+.,.....#..%..N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....FW.J..PROGRA~1..t......O.IWY......B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.VWY......L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.VWY......M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.VWY............................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.VWY.............................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i...........Z.A.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e.*.C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 23 19:48:12 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
Category:	dropped
Size (bytes):	2677
Entropy (8bit):	3.9882863105758686
Encrypted:	false
SSDEEP:
MD5:	887A35B7337FBCA0CDE5DE5D9A9B8C65
SHA1:	61BB95360EB4E8B3930595AD2E0D0093B8B133E6
SHA-256:	9A40A3BD9B22661ECE2FE43D481F163466FA1F0154D01FC8C6C5E1A4B5200C24
SHA-512:	9BFEFCF0F169C61DDBF3BA537E211359BD7B716EC552A3D574D1BA3FF73C52B02A5E81320B60C48BCFB6E676071ABB1040BF9090B0508CFBC5A42DA91CE9ED62
Malicious:	false
Reputation:	unknown
Preview:	L..................F.@.. ...$+.,.....X6..%..N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....FW.J..PROGRA~1..t......O.IWY......B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.VWY......L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.VWY......M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.VWY............................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.VWY.............................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i...........Z.A.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e..C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Wed Oct 23 19:48:12 2024, atime=Wed Sep 27 04:28:28 2023, length=1210144, window=hide
Category:	dropped
Size (bytes):	2679
Entropy (8bit):	3.9959780707714496
Encrypted:	false
SSDEEP:
MD5:	725A9452CF9AC9BEBE457444529A6442
SHA1:	B827B7C00E4631D3A7E1F2201C304C9D33F201D0
SHA-256:	F0E136DB686710641DCBA23BC541968E8D28C08DC03811183FA05921652A334C
SHA-512:	F438756812367AFEE93DF3CCEA0F771678FE277BAB110112EC3CA621B2D1BDBA25E5344D8FB4DFA1A6C10D1DA7078AF0BC5995A32125D27F68C25B71C53CF915
Malicious:	false
Reputation:	unknown
Preview:	L..................F.@.. ...$+.,....._ ..%..N.Yr.... w......................1....P.O. .:i.....+00.../C:\.....................1.....FW.J..PROGRA~1..t......O.IWY......B...............J.........P.r.o.g.r.a.m. .F.i.l.e.s...@.s.h.e.l.l.3.2...d.l.l.,.-.2.1.7.8.1.....T.1.....CW.V..Google..>......CW.VWY......L.....................p+j.G.o.o.g.l.e.....T.1.....CW.V..Chrome..>......CW.VWY......M......................8..C.h.r.o.m.e.....`.1.....CW.V..APPLIC~1..H......CW.VWY............................."&.A.p.p.l.i.c.a.t.i.o.n.....n.2. w..;W.+ .CHROME~1.EXE..R......CW.VWY.............................H..c.h.r.o.m.e._.p.r.o.x.y...e.x.e.......j...............-.......i...........Z.A.....C:\Program Files\Google\Chrome\Application\chrome_proxy.exe..S.....\.....\.....\.....\.....\.....\.....\.....\.....\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.\.c.h.r.o.m.e._.p.r.o.x.y...e.x.e..C.:.\.P.r.o.g.r.a.m. .F.i.l.e.s.\.G.o.o.g.l.e.\.C.h.r.o.m.e.\.A.p.p.l.i.c.a.t.i.o.n.F

Chrome Cache Entry: 129

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 32 x 32, 8-bit colormap, non-interlaced
Category:	downloaded
Size (bytes):	1337
Entropy (8bit):	7.576708981837566
Encrypted:	false
SSDEEP:
MD5:	C464A6F563D45486B2607E48E96F9594
SHA1:	56FC3C77A80B82926B8FE11A80DC5A6F23B43EC7
SHA-256:	3C3418EAB4507EA8CA594B46DC35575D0F5923CD9D95F3D594006C013456F873
SHA-512:	1DDB9396B8668A282499BAEFB0AC5F09751189BF4D1B2D4BF96082A4B74619666DBD56B9C637B0F4F111A0B4C17DF8AAE37CA31E92D6878070F4E74B96FD1CE9
Malicious:	false
Reputation:	unknown
URL:	https://www.eventcreate.com/favicon-32x32.png
Preview:	.PNG........IHDR... ... .....D.......gAMA......a.... cHRM..z&..............u0...`..:....p..Q<....PLTE3I.2H.2H.1G.0G.<Q.H[.Na.Qd.Sf.Se.Pc.Pc.DY.1H.5K.ar............................G[................................Ob..........z..Yk.L_.K^.J].J^.BV.AV.......s..5J..D.8M.CX.DX.DX.EY.=R....gx..E...................L`.....0F.k{...............................^p.Zl.Zl..........0F......./F.6K.6L....6L.......................7L....}..4J.....I\....................:O.Wi.]n.\m.[m.[l.......7M.fv.......I].H\.H\.@U.p.....................jz..........Tg....Uh.FZ.Re.Tf.Qc.......CW.:P....`q......................@T.z........`q._q._p.bs.bs.Pb.9eR.....bKGD...q.....pHYs...%...%.IR$.....tIME......6..OY....IDAT8.c`.z.......I.0...sprrqp..bJ............J.Ib.3KI....+()+.().b...jhji...........3.........ZX.......[Y.;{n.G'g...Wga.FT....zxzy...............u....1.........DU..%...+.'........ 9E6.!E6.."=#33+3[6.UAn.l~A.l.Y.SIiiiYy.$.......h.j......z]T..F.....v) ..,.B..0..n..^Y.........'..Tr..$v

Chrome Cache Entry: 131

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (398)
Category:	downloaded
Size (bytes):	533
Entropy (8bit):	4.997082022008435
Encrypted:	false
SSDEEP:
MD5:	C67CBCE88BDB97324C27F4EC434D7A7D
SHA1:	613B97E8BBCF243135D1ECABA57176AF22AFA633
SHA-256:	1751D01D00F903596B4C4B8F508B973BC7E4EB6E3F325C043D88D1BAAB1D0FF2
SHA-512:	D3AF129EC76D6214658BE7EEE5E5919C511D3B1F0EEAF297C6463AE0B5B7FB2E857E7586972E6EF1BD2FCEC632738110104E8811F05ED6591454881A4B8786AA
Malicious:	false
Reputation:	unknown
URL:	https://www.eventcreate.com/assets/vendor/fontawesome/regular.css
Preview:	/! Font Awesome Pro 6.2.0 by @fontawesome - https://fontawesome.com.* License - https://fontawesome.com/license (Commercial License).* Copyright 2022 Fonticons, Inc.*/:root,:host{--fa-style-family-classic: 'Font Awesome 6 Pro';--fa-font-regular: normal 400 1em/1 'Font Awesome 6 Pro'}@font-face{font-family:'font awesome 6 pro';font-style:normal;font-weight:400;font-display:block;src:url(/assets/icons/fa-regular-400.woff2) format("woff2"),url(/assets/icons/fa-regular-400.ttf) format("truetype")}.far,.fa-regular{font-weight:400}

Chrome Cache Entry: 133

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JSON data
Category:	downloaded
Size (bytes):	814
Entropy (8bit):	4.607978634509629
Encrypted:	false
SSDEEP:
MD5:	45536B01A827BBFFEB346241D84865B2
SHA1:	129129FF4AD3B555703F8E22258226510D44B814
SHA-256:	A639FC471B198202DD6AE3BEC11EC8D603B960B7BEA00E2538D703EF24DE8C87
SHA-512:	74466774128BE50C493F09329FEA412BE59F10A8D74F3CDB7A12440C20C1C4A1CCDE71A905A0C1C904F3D798A2082D1CE5D1828B455CD5FDADC367FE06E9B522
Malicious:	false
Reputation:	unknown
URL:	https://checkout.eventcreate.com/manifest.json
Preview:	{. "short_name": "EventCreate",. "name": "Reliable, simple event marketing software for any occasion. Create a beautiful event website, sell tickets, and promote your event online.",. "icons": [. {. "src": "assets/icons/launcher-icon-1x.png",. "type": "image/png",. "sizes": "48x48". },. {. "src": "assets/icons/launcher-icon-2x.png",. "type": "image/png",. "sizes": "96x96". },. {. "src": "assets/icons/launcher-icon-4x.png",. "type": "image/png",. "sizes": "192x192". },. {. "src": "assets/icons/launcher-icon-9x.png",. "type": "image/png",. "sizes": "512x512". }.. ],. "start_url": "/utm_source=homescreen",. "theme_color": "#334999",. "orientation": "portrait",. "background_color": "#334999",. "display": "browser".}

Chrome Cache Entry: 134

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	Web Open Font Format (Version 2), TrueType, length 32272, version 1.0
Category:	downloaded
Size (bytes):	32272
Entropy (8bit):	7.993066937172994
Encrypted:	true
SSDEEP:
MD5:	91C1ABDE26995ED2F211F73C11F96047
SHA1:	0B10CFF8BDBCBA61D5B6797214627912BCA4AE45
SHA-256:	45447A2B45991EA4E67FF0866444CA07FCF62C28DBFD5FA072AB76D3D0C46390
SHA-512:	29508E0995FAF428B7FDBF6A867E898279910A647F8A5D0EA46DBC0998A9D679AB4BAFCBFB26688281993BF5D417D639F65600099BB6E655350F9F819C4837E1
Malicious:	false
Reputation:	unknown
URL:	https://fonts.gstatic.com/s/outfit/v11/QGYvz_MVcBeNP4NJtEtq.woff2
Preview:	wOF2......~...........}..................................\|?HVAR..?MVARP.`?STAT...../l.......p..v.0....6.$..h. ..Z.....[..Q.6...z.._.>.....@......6..i.G...9Nd(...Z.......rUh..1.X..].i.l..yV.y...8[.....A.1..1.....R3.!K..q.%.....+x.'q6.N.:Q.v..3[.U1..J$8.;..DJy../.t4....V8......._.s{9P.jR....g..t.......$..Y.......~........8.h...F.`.c.].P.I..y.m..{..D $W.HfD.Dfff.f...7k..._m.X&.L.Pq.)....\.Z.....o.l.E\|........W@U...J.P.cUV..I.}oH..id..g...l\|W.W]....h..q.vl.[3<...'.4.".H#.C.(..v...v.6..........m.~p.?.....ft.m....&.h..j.ud...3`l........Qv..z...m..2....Z7....cbT."...... @M[..Y.<&..@.0..\|...u...../.......eN......LjD.j.... Ra.C...}....b..(..b..\.z.......\+.-b..nvc..e7...Nu....\|:.....)uY..{.L../>..._.5S.m!G.2o..o...:.B.H..o.TH.0.ycP3tf..%.h.'*y.[Q...hBV.._._..k>.SPx>..CMM.k.9U.....0...Q.Z..@._..2..q..$q3iS.Q..O....l..5}.+.....N.&G....ql+..s.c.V...@i.....r...].;r.b..m.c.!V..E....{\|.._}I.I_o4.a...'.Q.I.....a.SHE...K...}.m].....[...=@U....`.laF........Y.\|r...

Chrome Cache Entry: 135

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (26548)
Category:	downloaded
Size (bytes):	26711
Entropy (8bit):	4.753681219070429
Encrypted:	false
SSDEEP:
MD5:	0831CBA6A670E405168B84AA20798347
SHA1:	05EA25BC9B3AC48993E1FEE322D3BC94B49A6E22
SHA-256:	936FFCCDC35BC55221E669D0E76034AF76BA8C080C1B1149144DBBD3B5311829
SHA-512:	655F4A6B01B62DE824C29DE7025C4B21516E7536AE5AE0690B5D2E11A7CC1D82F449AAEBCF903B1BBF645E1E7EE7EC28C50E47339E7D5D7D94663309DFA5A996
Malicious:	false
Reputation:	unknown
URL:	https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.4.0/css/font-awesome.min.css
Preview:	/!. Font Awesome 4.4.0 by @davegandy - http://fontawesome.io - @fontawesome. * License - http://fontawesome.io/license (Font: SIL OFL 1.1, CSS: MIT License). */@font-face{font-family:'FontAwesome';src:url('../fonts/fontawesome-webfont.eot?v=4.4.0');src:url('../fonts/fontawesome-webfont.eot?#iefix&v=4.4.0') format('embedded-opentype'),url('../fonts/fontawesome-webfont.woff2?v=4.4.0') format('woff2'),url('../fonts/fontawesome-webfont.woff?v=4.4.0') format('woff'),url('../fonts/fontawesome-webfont.ttf?v=4.4.0') format('truetype'),url('../fonts/fontawesome-webfont.svg?v=4.4.0#fontawesomeregular') format('svg');font-weight:normal;font-style:normal}.fa{display:inline-block;font:normal normal normal 14px/1 FontAwesome;font-size:inherit;text-rendering:auto;-webkit-font-smoothing:antialiased;-moz-osx-font-smoothing:grayscale}.fa-lg{font-size:1.33333333em;line-height:.75em;vertical-align:-15%}.fa-2x{font-size:2em}.fa-3x{font-size:3em}.fa-4x{font-size:4em}.fa-5x{font-size:5em}.fa-fw{width:1.

Chrome Cache Entry: 139

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (4825), with no line terminators
Category:	dropped
Size (bytes):	4825
Entropy (8bit):	5.824947738551287
Encrypted:	false
SSDEEP:
MD5:	53283D144901B795AD6D2E0E54D309AD
SHA1:	C088D216B28B6AA18A4AAB4F7D788E5B20476D3D
SHA-256:	E8A46514B3182C00F2F5FC2801980CE42304E19F4DD8AB55ED84C9508DA4DFE8
SHA-512:	43C47290BB480DE2787B6A932A3B05B15D1006AFF7E299E34001BE01FC66DAA4269F090AC4A3FF74BE75591AAFB1D0BF42ED1C577C6004108346740AB4815847
Malicious:	false
Reputation:	unknown
Preview:	(function(){var s = {};(function(){var h=typeof Object.defineProperties=="function"?Object.defineProperty:function(a,b,d){if(a==Array.prototype\|\|a==Object.prototype)return a;a[b]=d.value;return a};function k(a){a=["object"==typeof globalThis&&globalThis,a,"object"==typeof window&&window,"object"==typeof self&&self,"object"==typeof global&&global];for(var b=0;b<a.length;++b){var d=a[b];if(d&&d.Math==Math)return d}throw Error("Cannot find global object");} var m=k(this),p=typeof Symbol==="function"&&typeof Symbol("x")==="symbol",t={},v={};function w(a,b,d){if(!d\|\|a!=null){d=v[b];if(d==null)return a[b];d=a[d];return d!==void 0?d:a[b]}} function x(a,b,d){if(b)a:{var c=a.split(".");a=c.length===1;var e=c[0],g;!a&&e in t?g=t:g=m;for(e=0;e<c.length-1;e++){var f=c[e];if(!(f in g))break a;g=g[f]}c=c[c.length-1];d=p&&d==="es6"?g[c]:null;b=b(d);b!=null&&(a?h(t,c,{configurable:!0,writable:!0,value:b}):b!==d&&(v[c]===void 0&&(a=Math.random()*1E9>>>0,v[c]=p?m.Symbol(c):"$jscp$"+a+"$"+c),h(g,v[c],{co

Chrome Cache Entry: 140

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (390)
Category:	downloaded
Size (bytes):	525
Entropy (8bit):	4.998900749454914
Encrypted:	false
SSDEEP:
MD5:	F7C8DD0C89898860EB2EFF65C058A975
SHA1:	E09EBF44A4912A12E2055119681CBED1F66DA5A3
SHA-256:	13D048343AC68F7014B303F85D28B5A3FC827FAC21891A4642A430710BBBC654
SHA-512:	880CE1B9732322EE00EC7E2C0174692BBD780FFEC7F008EF77B3BDB276F683D28E46F902CA17515061AB8F7CC1BA9CE823D46165F3F3E0923D02A1EEB8318A10
Malicious:	false
Reputation:	unknown
URL:	https://checkout.eventcreate.com/assets/vendor/fontawesome/light.css
Preview:	/! Font Awesome Pro 6.2.0 by @fontawesome - https://fontawesome.com.* License - https://fontawesome.com/license (Commercial License).* Copyright 2022 Fonticons, Inc.*/:root,:host{--fa-style-family-classic: 'Font Awesome 6 Pro';--fa-font-light: normal 300 1em/1 'Font Awesome 6 Pro'}@font-face{font-family:'font awesome 6 pro';font-style:normal;font-weight:300;font-display:block;src:url(/assets/icons/fa-light-300.woff2) format("woff2"),url(/assets/icons/fa-light-300.ttf) format("truetype")}.fal,.fa-light{font-weight:300}

Chrome Cache Entry: 141

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text
Category:	downloaded
Size (bytes):	1684381
Entropy (8bit):	5.1789372251575
Encrypted:	false
SSDEEP:
MD5:	571C014AF87AB0EDDFD35B9D08BC7289
SHA1:	D5836DC5620AC52437F05F4251B4D3F6D2BFED84
SHA-256:	57FEE2DB257853965839F3185A590F86A785F9AD9CFB9ECA89E5C263FD4303E4
SHA-512:	C9ACDFDB1E879780BD8A83CE5FF4A4B13BCD319F70139C9F07A50A776B73375CC2B1C0A77318CCC92021BDA8AEC1F4DB68B6DB1EE7CD75547B6A9BAE89BB55A8
Malicious:	false
Reputation:	unknown
URL:	https://checkout.eventcreate.com/assets/application-f9cb6169f5fb8916b6da26f106c735d6197fd3b5660fa1e88e4b30e74c2a2684.js
Preview:	/!. jQuery JavaScript Library v1.12.4. * http://jquery.com/. . Includes Sizzle.js. * http://sizzlejs.com/. . Copyright jQuery Foundation and other contributors. * Released under the MIT license. * http://jquery.org/license. . Date: 2016-05-20T17:17Z. */..(function( global, factory ) {...if ( typeof module === "object" && typeof module.exports === "object" ) {...// For CommonJS and CommonJS-like environments where a proper `window`...// is present, execute the factory and get jQuery....// For environments that do not have a `window` with a `document`...// (such as Node.js), expose a factory as module.exports....// This accentuates the need for the creation of a real `window`....// e.g. var jQuery = require("jquery")(window);...// See ticket #14549 for more info....module.exports = global.document ?....factory( global, true ) :....function( w ) {.....if ( !w.document ) {......throw new Error( "jQuery requires a window with a document" );.....}.....return factory( w );....};..

Chrome Cache Entry: 142

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	Web Open Font Format (Version 2), TrueType, length 22052, version 1.0
Category:	downloaded
Size (bytes):	22052
Entropy (8bit):	7.9905780307251435
Encrypted:	true
SSDEEP:
MD5:	F0E48CE2BEDA9E8CBD7D915BF1B1AE71
SHA1:	3DC1CFFF1759B0959CC7FB17517651EC850D584D
SHA-256:	B2504B3C20C2FEB37E78773B788DD09A9CC43C9F36086BC1E2F83A6366EBAA34
SHA-512:	E508030F4D1EB809AFF40D9AC57C65DF2F069AC495058330C3D315B3BA23AB5C0100053635CE4D5DBE672BCEB116AAF7D5AAA547CC60335CD55A9597C80D4948
Malicious:	false
Reputation:	unknown
URL:	https://fonts.gstatic.com/s/arimo/v29/P5sCzZCDf9_T_10c9CNkiA.woff2
Preview:	wOF2......V$..........U...........................%.....4?HVAR...`?STATR..v/8.....<.!..d.0...6.$..D. ...........5.].....V.6.k...6.`..E#..zr........YI.Ka....c.%.t4......U\....4....ZD{.PB.u.r...Vn5QS?.}..bc].`.E3.s.\|......b..;E.........3....K....^1.h...n.{..V.e.]....(2...?..}...3.B.#...a.........sV.R..@.v..o...............c..........._L....+....X.".........3....:...vo.L+...G....vw.<.F...j$!..D]U.k. ....R.+f@....4T.xH..IM..v[=.^.uwO.pZ.e.U.....u.{....1.U.DR.D..LUW:~;D.i..V..^..g......3..7M%p..l.j.J.At..mVIH AK.....g.........mo..&....9.....&...A.v.S@6..T....~....H,AK.}...."t.$.zNMI..;f&k@..x.~.^6&Y.AJ....;M....7..;'<D..2v.....elw...@.A4/...o...Z...o_...jOm.UTq........V[d.....{.Z...j.y.h}....XPXxX..`8<>....`@98..Ox.utu.s..J..I.J:...8.k^...+..uN.nV.=.y.J...V.E.X4%S.7Qg....c...4..=_.~...lw....,../....>.*..q.....E...\.i."sH....f.......Q-t...MA.x....)..2...}........5..k..=..G..I .n..i..}...x..z.......hz..f.<8/.~s..x.W....m..$7..F".a...K3x.<.t.0.^2...

Chrome Cache Entry: 145

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text
Category:	downloaded
Size (bytes):	1113
Entropy (8bit):	4.907262188373429
Encrypted:	false
SSDEEP:
MD5:	25774F70A0D6D67630A44AE73ABC5905
SHA1:	0F77288F5E675752EED6C49D1D4631068865E13B
SHA-256:	312A8551B897C76DFD329C49F0F87465B9B6D046C1DB0960CF2303D13420A826
SHA-512:	8B5EC6965F3BFC0B5FFA1646D3336A90B90A4C68AEB67EA416734CA3B49973EC67763ED66D6EFAEEDC244694E3B58E27F8D53742017EA97032C2A3B3242A5CB8
Malicious:	false
Reputation:	unknown
URL:	https://www.eventcreate.com/assets/vendor/editor/plugins/char_counter-25758a00f9e39ceb28448b6d661166ca13da4898a20b2f9a874a0f43783bc454.css
Preview:	/!. froala_editor v2.3.4 (https://www.froala.com/wysiwyg-editor). * License https://froala.com/wysiwyg-editor/terms/. * Copyright 2014-2016 Froala Labs. */...clearfix::after {. clear: both;. display: block;. content: "";.}..fr-box .fr-counter {. position: absolute;. bottom: 0px;. padding: 5px;. right: 0px;. color: #cccccc;. content: attr(data-chars);. font-size: 15px;. font-family: "Times New Roman", Georgia, Serif;. z-index: 1;. background: #ffffff;. border-top: solid 1px #ebebeb;. border-left: solid 1px #ebebeb;. border-radius: 2px 0 0 0;. -moz-border-radius: 2px 0 0 0;. -webkit-border-radius: 2px 0 0 0;. -moz-background-clip: padding;. -webkit-background-clip: padding-box;. background-clip: padding-box;.}..fr-box.fr-rtl .fr-counter {. left: 0px;. right: auto;. border-left: none;. border-right: solid 1px #ebebeb;. border-radius: 0 2px 0 0;. -moz-border-radius: 0 2px 0 0;. -webkit-border-radius: 0 2px 0 0;. -moz-background-clip: padding;. -webkit-backg

Chrome Cache Entry: 147

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text
Category:	downloaded
Size (bytes):	2833
Entropy (8bit):	4.7946703322268345
Encrypted:	false
SSDEEP:
MD5:	6D482C3BC5B313B2E16616722B2F3A5E
SHA1:	AD610C4EEB15F0D0410C5B9B2DA2185830B2D5F0
SHA-256:	D656718C2889BFAF88824F0501F8FFF7748F5D7B4B57A7A357D44AF8BD8D027B
SHA-512:	A01268C42999F7F26B497129E53CAFC3DD5303239104F492F3BCAE400FB07D6A9F11220AF6A7FB2802CC193FEC1364E54189ABB7BF0666D678A5D3AEF17C1EE4
Malicious:	false
Reputation:	unknown
URL:	https://www.eventcreate.com/assets/vendor/editor/plugins/video-f9ef9d3a044405e583a6b859e260b0dd3008a659164bf73dd6dc3f1a676d03ff.css
Preview:	/!. froala_editor v2.3.4 (https://www.froala.com/wysiwyg-editor). * License https://froala.com/wysiwyg-editor/terms/. * Copyright 2014-2016 Froala Labs. /...clearfix::after {. clear: both;. display: block;. content: "";.}..fr-element .fr-video {. user-select: none;. -o-user-select: none;. -moz-user-select: none;. -khtml-user-select: none;. -webkit-user-select: none;. -ms-user-select: none;.}..fr-element .fr-video::after {. position: absolute;. content: '';. z-index: 1;. top: 0;. left: 0;. right: 0;. bottom: 0;. cursor: pointer;. display: block;. background: rgba(0, 0, 0, 0);.}..fr-element .fr-video.fr-active > {. z-index: 2;. position: relative;.}..fr-element .fr-video > * {. -webkit-box-sizing: content-box;. -moz-box-sizing: content-box;. box-sizing: content-box;. max-width: 100%;. border: none;.}..fr-box .fr-video-resizer {. position: absolute;. border: solid 1px #1e88e5;. display: none;. user-select: none;. -o-user-select: none;. -moz-user-selec

Chrome Cache Entry: 148

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (2134)
Category:	dropped
Size (bytes):	13188
Entropy (8bit):	5.4223896155104025
Encrypted:	false
SSDEEP:
MD5:	7C96A5F11D9741541D5E3C42FF6380D7
SHA1:	D3FA2564C021CF730E58FFDDB138CF6B57ED126E
SHA-256:	81016AC6BE850B72DF5D4FAA0C3CEC8E2C1B0BA0045712144A6766ADFAD40BEE
SHA-512:	23C162A2E268951729B580E5035AD6CA9969CFCC5CE58A220817B912E76B38BE6C29C3CA7680CB4E8198863D95A72EA65BD06FF7189B5C8475E4C1CE501AEAB1
Malicious:	false
Reputation:	unknown
Preview:	/. Copyright 2016 Small Batch, Inc.. . Licensed under the Apache License, Version 2.0 (the "License"); you may not. * use this file except in compliance with the License. You may obtain a copy of. * the License at. . http://www.apache.org/licenses/LICENSE-2.0. . Unless required by applicable law or agreed to in writing, software. * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT. * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the. * License for the specific language governing permissions and limitations under. * the License.. /./ Web Font Loader v1.6.26 - (c) Adobe Systems, Google. License: Apache 2.0 */(function(){function aa(a,b,c){return a.call.apply(a.bind,arguments)}function ba(a,b,c){if(!a)throw Error();if(2<arguments.length){var d=Array.prototype.slice.call(arguments,2);return function(){var c=Array.prototype.slice.call(arguments);Array.prototype.unshift.apply(c,d);return a.apply(b,c)}}return function(){return a.app

Chrome Cache Entry: 149

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (18959)
Category:	downloaded
Size (bytes):	19094
Entropy (8bit):	4.678459571837397
Encrypted:	false
SSDEEP:
MD5:	FDA045A6A526BE12FA006ED4C74EAC2D
SHA1:	5792021A37EEC032035A384836F16B560AE5154E
SHA-256:	12E6EE7A918973853FB93543F9EC9898E97628F184E769FD65FF5028004BFB8D
SHA-512:	A03F9D9A82C3B4F44D04B22CA274F5F0E471E22A24641193E50FCE2D29D4D6240D5F8D7838E106D5DBB23987CD24FBDB9592C790C76B1CBCDB50A26EA1E37BE8
Malicious:	false
Reputation:	unknown
URL:	https://www.eventcreate.com/assets/vendor/fontawesome/brands.css
Preview:	/! Font Awesome Pro 6.2.0 by @fontawesome - https://fontawesome.com.* License - https://fontawesome.com/license (Commercial License).* Copyright 2022 Fonticons, Inc.*/:root,:host{--fa-style-family-brands: 'Font Awesome 6 Brands';--fa-font-brands: normal 400 1em/1 'Font Awesome 6 Brands'}@font-face{font-family:'font awesome 6 brands';font-style:normal;font-weight:400;font-display:block;src:url(/assets/icons/fa-brands-400.woff2) format("woff2"),url(/assets/icons/fa-brands-400.ttf) format("truetype")}.fab,.fa-brands{font-weight:400}.fa-monero:before{content:"\f3d0"}.fa-hooli:before{content:"\f427"}.fa-yelp:before{content:"\f1e9"}.fa-cc-visa:before{content:"\f1f0"}.fa-lastfm:before{content:"\f202"}.fa-shopware:before{content:"\f5b5"}.fa-creative-commons-nc:before{content:"\f4e8"}.fa-aws:before{content:"\f375"}.fa-redhat:before{content:"\f7bc"}.fa-yoast:before{content:"\f2b1"}.fa-cloudflare:before{content:"\e07d"}.fa-ups:before{content:"\f7e0"}.fa-wpexplorer:before{content:"\f2de"}.fa-dya

Chrome Cache Entry: 151

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (390)
Category:	downloaded
Size (bytes):	525
Entropy (8bit):	4.98636816537401
Encrypted:	false
SSDEEP:
MD5:	00ED7263590F53BAD45F70C6D1D72456
SHA1:	52BFC2DEE2FDEA51F8D5522696CA9FAA1623B83E
SHA-256:	5878B73E17B0DB58789996225631DCC8F226C1AC9765398ECBC9E8F80A920506
SHA-512:	9BA9C8362EF64E2D8AE8AFCF55E4E5F65978056B634985DCDDDEEA1A3E5078F9F9299D14F26FB40328F961AAA2B135FC8D415BCA9C5DDFD787FB9E75EA4CE6BB
Malicious:	false
Reputation:	unknown
URL:	https://checkout.eventcreate.com/assets/vendor/fontawesome/solid.css
Preview:	/! Font Awesome Pro 6.2.0 by @fontawesome - https://fontawesome.com.* License - https://fontawesome.com/license (Commercial License).* Copyright 2022 Fonticons, Inc.*/:root,:host{--fa-style-family-classic: 'Font Awesome 6 Pro';--fa-font-solid: normal 900 1em/1 'Font Awesome 6 Pro'}@font-face{font-family:'font awesome 6 pro';font-style:normal;font-weight:900;font-display:block;src:url(/assets/icons/fa-solid-900.woff2) format("woff2"),url(/assets/icons/fa-solid-900.ttf) format("truetype")}.fas,.fa-solid{font-weight:900}

Chrome Cache Entry: 154

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	Web Open Font Format (Version 2), CFF, length 34148, version 1.0
Category:	downloaded
Size (bytes):	34148
Entropy (8bit):	7.991251162522274
Encrypted:	true
SSDEEP:
MD5:	9AD738D653D1C23157408BF07C35FBEE
SHA1:	F6EA567B2FCC7D7B92E588B979FA0AAF8F01C3BC
SHA-256:	AF3B3037B84BE1EF0F0DFAFC75BD30480C05AC2CCDA8BEE8C9188308A8B81221
SHA-512:	223BDE09F4FC829B803DB64967C13F6C60B20711FE87B9DDB74225EBD0FDB1A2903FA75EA6EE5F73BA87BDAB3F80F80ED69DDC3EDA8D87AB02241CB25675C866
Malicious:	false
Reputation:	unknown
URL:	https://use.typekit.net/af/98e3f6/000000000000000077359562/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n7&v=3
Preview:	wOF2OTTO...d.....................................F....?DYNA.W...?GDYN.u..N....`..,.6.$..8...... .....^....I..C.............jBB`.......~._..7........?.......c.."]........oj.a.hZ{.Da.HT...K)a/.${..96.k..W.-U..X$..."..V..c...?.~....c....Q\|..(..k.a...RK.T)n$.F.....H.......n........._..y...\|.$hN\....M0.`.W. .'.o....<.'6].A...(.`...}M..\|.is.W.'a[T...K..q.g.%h.iP+f.Udn.........I......7.#bA.K...".f....bR...bf.......y....^._kJ.}......qu.1..W.Y.....N....5....sK.WD.W.pL.....k.g/...d..l........(....Q......&`.....4.U]T..j.XhU....A.X.+M.%...C.#.>@?...."..^d.z..?..a2....A.PH.O..Z_..P...,l....]R....V,...z'j..W.+..4i......EMR../..v.x.H....J..T....c_...x~m.....*``...Fl@........(7..(\.....?.....E,[,....V,..4X./.,X.b./E.XW........`Y+......~.d0..G4......=...H..PI.H.C..oj...oA0...".Iy......B.(.....>,)..]...@........pQ!...(....E.".H9..Pi\.)..nK.K..K.;.M..nJ....Mj...&.i......X.@...km..E....H..a.1..T..xE..$@.x,.~.+..T...7..(..+..K.W..L.k..Y5.y."d.2.J._....p.....]E....

Chrome Cache Entry: 155

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (4808), with no line terminators
Category:	downloaded
Size (bytes):	4808
Entropy (8bit):	5.820923879854617
Encrypted:	false
SSDEEP:
MD5:	05F66D8CDFBBD49FAEF1561BAAB8D444
SHA1:	6315FB7EC1536E8079689CDCFBEADED4C1F5C075
SHA-256:	87FB0B84154A3A8AAFE9DBFEC68DA2034223DD34674CCE3F513E49E3D9AACFE3
SHA-512:	C8582A591A63AA340F2B06071800B56E989198A560DE98634FCBF964BBF244743B71F79DD5FF721620FA759304E9E3A02D57D715CA80FBF5F94FB4C98CCA2005
Malicious:	false
Reputation:	unknown
URL:	https://googleads.g.doubleclick.net/pagead/viewthroughconversion/940862296/?random=1729716499175&cv=11&fst=1729716499175&bg=ffffff&guid=ON&async=1&gtm=45be4ah0v9168882605za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=101686685~101794737~101823847&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.eventcreate.com%2Fe%2F11-7-24-raleigh-11th-hou-614158&hn=www.googleadservices.com&frm=0&tiba=11%2F6%2F24-Raleigh-%2011th%20Hour%20Credit%20Hours%20%7C%20November%2006%2C%202024&npa=0&pscdl=noapi&auid=1390798826.1729716499&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4
Preview:	(function(){var s = {};(function(){var h=typeof Object.defineProperties=="function"?Object.defineProperty:function(a,b,d){if(a==Array.prototype\|\|a==Object.prototype)return a;a[b]=d.value;return a};function k(a){a=["object"==typeof globalThis&&globalThis,a,"object"==typeof window&&window,"object"==typeof self&&self,"object"==typeof global&&global];for(var b=0;b<a.length;++b){var d=a[b];if(d&&d.Math==Math)return d}throw Error("Cannot find global object");} var m=k(this),p=typeof Symbol==="function"&&typeof Symbol("x")==="symbol",t={},v={};function w(a,b,d){if(!d\|\|a!=null){d=v[b];if(d==null)return a[b];d=a[d];return d!==void 0?d:a[b]}} function x(a,b,d){if(b)a:{var c=a.split(".");a=c.length===1;var e=c[0],g;!a&&e in t?g=t:g=m;for(e=0;e<c.length-1;e++){var f=c[e];if(!(f in g))break a;g=g[f]}c=c[c.length-1];d=p&&d==="es6"?g[c]:null;b=b(d);b!=null&&(a?h(t,c,{configurable:!0,writable:!0,value:b}):b!==d&&(v[c]===void 0&&(a=Math.random()*1E9>>>0,v[c]=p?m.Symbol(c):"$jscp$"+a+"$"+c),h(g,v[c],{co

Chrome Cache Entry: 157

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (3969)
Category:	dropped
Size (bytes):	283806
Entropy (8bit):	5.547136829837213
Encrypted:	false
SSDEEP:
MD5:	5A6E1779C0BCE1DD82FF4DB7CBF8457A
SHA1:	0FC6133B5837410ADC71D20243016FF95A1EFC50
SHA-256:	550E6F8482460A93AA14C173CD2BEF7501078E1D85CC1508176F72EBDEB134EC
SHA-512:	A22BD5165D9A8AB023E71E251F003F65A321EBB7641F493026165C4BA9A04682B718F937CDDE5CF14CB1A1305FE39F9DB1F9A6A196D4C6B390BD7833262894AA
Malicious:	false
Reputation:	unknown
Preview:	.// Copyright 2012 Google Inc. All rights reserved.. .(function(){..var data = {."resource": {. "version":"2",. . "macros":[{"function":"__e"}],. "tags":[{"function":"__ogt_ads_datatos","priority":16,"vtp_instanceDestinationId":"AW-940862296","tag_id":16},{"function":"__ogt_dma","priority":6,"vtp_delegationMode":"ON","vtp_dmaDefault":"DENIED","tag_id":8},{"function":"__ogt_1p_data_v2","priority":6,"vtp_isAutoEnabled":true,"vtp_autoCollectExclusionSelectors":["list",["map","exclusionSelector",""]],"vtp_isEnabled":true,"vtp_cityType":"CSS_SELECTOR","vtp_manualEmailEnabled":false,"vtp_firstNameType":"CSS_SELECTOR","vtp_countryType":"CSS_SELECTOR","vtp_cityValue":"","vtp_emailType":"CSS_SELECTOR","vtp_regionType":"CSS_SELECTOR","vtp_autoEmailEnabled":true,"vtp_postalCodeValue":"","vtp_lastNameValue":"","vtp_phoneType":"CSS_SELECTOR","vtp_phoneValue":"","vtp_streetType":"CSS_SELECTOR","vtp_autoPhoneEnabled":false,"vtp_postalCodeType":"CSS_SELECTOR","vtp_emailValue":"","vtp_firstNameValu

Chrome Cache Entry: 158

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (326)
Category:	downloaded
Size (bytes):	292619
Entropy (8bit):	4.949721085358164
Encrypted:	false
SSDEEP:
MD5:	E7209CBC90A976CCA1F01AD83A4C2925
SHA1:	B33D9525B43F91FFA1DE4E5DE60D43B0D9CB39DC
SHA-256:	ED2626C7B2D89D66D162BFE97C77DF21E962B30D32B945E182B9702C29B47151
SHA-512:	8E0A456A47C74E372ACEACBE70B86554D8B0768CC8C1E0F3C79361E0B45E141C87744DEC7DD6BB9F179FD27BF401414E41F936552D0902BE41D7F39B77D0DEE9
Malicious:	false
Reputation:	unknown
URL:	https://www.eventcreate.com/assets/events-b5c9c5378949230582279c20d4c78d18beb42d0408df30cadf457f39f92d7b19.css
Preview:	/* line 1, app/assets/stylesheets/styles/device_mocks.scss /..phone {. width: 200px;. height: 320px;. background: #1f2834;. margin: 0;. padding: 38px 6px 0 6px;. border: 2px solid #e0e5e9;. -khtml-border-radius: 26px 26px 0 0;. -moz-border-radius: 26px 26px 0 0;. -webkit-border-radius: 26px 26px 0 0;. border-radius: 26px 26px 0 0;. position: relative;. z-index: 2;.}../ line 15, app/assets/stylesheets/styles/device_mocks.scss /..phone img {. width: 100%;.}../ line 21, app/assets/stylesheets/styles/device_mocks.scss /..phone .details .camera {. width: 8px;. height: 8px;. -khtml-border-radius: 4px;. -moz-border-radius: 4px;. -webkit-border-radius: 4px;. border-radius: 4px;. background: rebeccapurple;. position: absolute;. top: 15px;. left: 76px;.}../ line 34, app/assets/stylesheets/styles/device_mocks.scss */..phone .details .speaker {. width: 32px;. height: 6px;. -khtml-border-radius: 3px;. -moz-border-radius: 3px;. -webkit-border-radius: 3px;. border-r

Chrome Cache Entry: 159

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (11906), with no line terminators
Category:	dropped
Size (bytes):	11906
Entropy (8bit):	5.217388452137047
Encrypted:	false
SSDEEP:
MD5:	98D84239C39BEC9E67B3ABAF76A6E500
SHA1:	8BAAFAF1BAB6195301CF9065F6CF231131FA9D67
SHA-256:	1DFA83A1B50579AD4ECF77AF193B842488D0C7D9BAAED86C82B7BC6ED2B0EDC6
SHA-512:	92093606A991E25F48718258BE4EE1BFE88EE39603B2B35AB739C84F0854C89BFC736797F113046B42B72EDFF8686FEF575D198B909B6E3525E5C712B62110F4
Malicious:	false
Reputation:	unknown
Preview:	!function(){var d=window,v=window.TapfiliateObject\|\|"tap",r=d[v]&&d[v].q\|\|[];if(!d[v]\|\|!d[v].loaded){d[v]=function(t,e,n,o,i,r){var a=d[v][t];if("function"!=typeof a)throw'Function "'+t+'" not supported';a(e,n,o,i,r)},d[v].q=r,d[v].loaded=!0,d[v].baseUrl="https://frstre.com",d[v].baseUrlDepr="https://tapi.tapfiliate.com";var e,h;d[v].Tracking=d[v].Tracking\|\|{},d[v].options=d[v].options\|\|{};var k={},a=!1,s=new function(){var s={},l=0,u=[],c=[],p=!1,o=this;return this.addMethod=function(t){if(t.supported())return l++,s[t.key]=t,this},this.init=function(){var t=l;function e(){--t<=0&&(p=!0,function(){for(var t=u.length-1;0<=t;t--)o.read.apply(o,u[t]);for(var e=c.length-1;0<=e;e--)o.write.apply(o,c[e])}())}for(var n in s)"function"==typeof s[n].init?s[n].init(e):e()},this.read=function(t,e,o){if(p){var i=l,r=[],a={};for(var n in s){a[n]=setTimeout(c,2e3);try{s[n].read(t,c)}catch(t){}}}else u.push(arguments);function c(t,e,n){clearTimeout(a[n]),e&&e.constructor===Array?r=r.concat(e):r.push(

Chrome Cache Entry: 160

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (4136)
Category:	dropped
Size (bytes):	5339
Entropy (8bit):	5.546494686586626
Encrypted:	false
SSDEEP:
MD5:	5D3FF3C3FBAA67CC639501F44EEB07BE
SHA1:	BD66E4CD58DE09C198E7ABC77FA4C883955D189E
SHA-256:	2249399B2268C260D0698542503D16AFEBC80E437C846239F12196744EBBD40F
SHA-512:	96D7AE443F9A50436B64F4D758544F4C17030F120659EE6EBB46A93C49FEDD92980F00DA104AC82BDAEF474433506994439E4A144D91A864D5A19B0A72D18C57
Malicious:	false
Reputation:	unknown
Preview:	/!. The Final Countdown for jQuery v2.2.0 (http://hilios.github.io/jQuery.countdown/). * Copyright (c) 2016 Edson Hilios. * . * Permission is hereby granted, free of charge, to any person obtaining a copy of. * this software and associated documentation files (the "Software"), to deal in. * the Software without restriction, including without limitation the rights to. * use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of. * the Software, and to permit persons to whom the Software is furnished to do so,. * subject to the following conditions:. * . * The above copyright notice and this permission notice shall be included in all. * copies or substantial portions of the Software.. * . * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR. * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS. * FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR. * COPYRIGHT HOLDERS BE LIABLE FOR A

Chrome Cache Entry: 161

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (5552)
Category:	downloaded
Size (bytes):	69521
Entropy (8bit):	5.322507489943611
Encrypted:	false
SSDEEP:
MD5:	0C18AFB7554EAAF8513DD965E69DD42D
SHA1:	4470A9915E97CAD34658C30B36FCE5920EED693C
SHA-256:	6C8CB11A42F4BD5327A3B3D875E6B23BDA7825D24CFC7A6A3088B1EC6B358D89
SHA-512:	FF133ABE13D11CF0C629C66E999E263AB5AA337637EC469A422F00CD6E090DA91040B115BC2E5442CE6F47556C95CFFE603260BBFABAB3EBD89AAACEFF40B303
Malicious:	false
Reputation:	unknown
URL:	https://connect.facebook.net/signals/config/1690973678346397?v=2.9.173&r=stable&domain=checkout.eventcreate.com&hme=ead923021ccd3483ef3b9b04703d0a78b943fbdc01e8d7cec21c5059f1f4a5e9&ex_m=70%2C121%2C107%2C111%2C61%2C4%2C100%2C69%2C16%2C97%2C89%2C51%2C54%2C172%2C175%2C187%2C183%2C184%2C186%2C29%2C101%2C53%2C77%2C185%2C167%2C170%2C180%2C181%2C188%2C131%2C41%2C34%2C143%2C15%2C50%2C194%2C193%2C133%2C18%2C40%2C1%2C43%2C65%2C66%2C67%2C71%2C93%2C17%2C14%2C96%2C92%2C91%2C108%2C52%2C110%2C39%2C109%2C30%2C94%2C26%2C168%2C171%2C140%2C86%2C56%2C84%2C33%2C73%2C0%2C95%2C32%2C28%2C82%2C83%2C88%2C47%2C46%2C87%2C37%2C11%2C12%2C13%2C6%2C7%2C25%2C22%2C23%2C57%2C62%2C64%2C75%2C102%2C27%2C76%2C9%2C8%2C80%2C48%2C21%2C104%2C103%2C105%2C98%2C10%2C20%2C3%2C38%2C74%2C19%2C5%2C90%2C81%2C44%2C35%2C85%2C2%2C36%2C63%2C42%2C106%2C45%2C79%2C68%2C112%2C60%2C59%2C31%2C99%2C58%2C55%2C49%2C78%2C72%2C24%2C113
Preview:	/*. Copyright (c) 2017-present, Facebook, Inc. All rights reserved... You are hereby granted a non-exclusive, worldwide, royalty-free license to use,.* copy, modify, and distribute this software in source code or binary form for use.* in connection with the web services and APIs provided by Facebook... As with any software that integrates with the Facebook platform, your use of.* this software is subject to the Facebook Platform Policy.* [http://developers.facebook.com/policy/]. This copyright notice shall be.* included in all copies or substantial portions of the software... THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR.* IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS.* FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR.* COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER.* IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN.* CONNECTION WI

Chrome Cache Entry: 163

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (1407), with no line terminators
Category:	dropped
Size (bytes):	1407
Entropy (8bit):	5.197633596425856
Encrypted:	false
SSDEEP:
MD5:	DF44BE7742ADAE3607225522DDA483A1
SHA1:	46F8DD3B65567F5C822665F8F555600EAB1AEAEF
SHA-256:	E3409AC09AF396E35FD67C5E024386D36C52138B7541E6A4644C31A94A2D33A4
SHA-512:	C40DA2BAE316B4C83C682E8B260E17109D5771BF6197B8888F7075829524534E01D58404525A8C0F46E50771B25C41CD78E8E5D86171B9C9F6A3E69232D3FC92
Malicious:	false
Reputation:	unknown
Preview:	!function(){"use strict";var a=window.location,o=window.document,t=o.currentScript,r=t.getAttribute("data-api")\|\|new URL(t.src).origin+"/api/event",l=t.getAttribute("data-domain");function s(t,e){t&&console.warn("Ignoring Event: "+t),e&&e.callback&&e.callback()}function e(t,e){if(/^localhost$\|^127(\.[0-9]+){0,2}\.[0-9]+$\|^\[::1?\]$/.test(a.hostname)\|\|"file:"===a.protocol)return s("localhost",e);if((window._phantom\|\|window.__nightmare\|\|window.navigator.webdriver\|\|window.Cypress)&&!window.__plausible)return s(null,e);try{if("true"===window.localStorage.plausible_ignore)return s("localStorage flag",e)}catch(t){}var n={},i=(n.n=t,n.u=a.href,n.d=l,n.r=o.referrer\|\|null,e&&e.meta&&(n.m=JSON.stringify(e.meta)),e&&e.props&&(n.p=e.props),new XMLHttpRequest);i.open("POST",r,!0),i.setRequestHeader("Content-Type","text/plain"),i.send(JSON.stringify(n)),i.onreadystatechange=function(){4===i.readyState&&e&&e.callback&&e.callback({status:i.status})}}var n=window.plausible&&window.plausible.q\|\|[];windo

Chrome Cache Entry: 164

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	Web Open Font Format (Version 2), TrueType, length 318036, version 770.256
Category:	downloaded
Size (bytes):	318036
Entropy (8bit):	7.9970319963562035
Encrypted:	true
SSDEEP:
MD5:	750E40B51D2B5C96C9A1901D9A0F7A45
SHA1:	D76FA973391599233BD5DA26ED3CA5EDB17B26A1
SHA-256:	C5D9C49183CDD250B5282DDF8E8E9272B26FB15348AC8AEA037EC45DFBDC53AA
SHA-512:	731ECEC377EDBE62726A5E61DEC31CDE0765958EB755DE2E7E9308D7BE3E101B40409C3F542827ED084F7515C030F9939625B3D2F6B2D7D25F6360DDB0FBE3BE
Malicious:	false
Reputation:	unknown
URL:	https://checkout.eventcreate.com/assets/icons/fa-solid-900.woff2
Preview:	wOF2.......T.....................................8.$. .`......@..8.....d. ...t.. 8...[..pD.f.o..q....y........U...O~.._..w..._........-0.w?@...p.....ox....T.........3..". ."T..w.n....H_......'.d^..F..l.]..Jt.g21....I;Q..........Gn;... .5g8..p...?..........iYYK.+aU...6Vr.."..._....y.r........j."...T>......X4..'..._@..<....Yu. ..+8.......Dg.H.K. (...Dw/..b...KB.....;'&...R...\\..^.O....v..>3...\...HiIJ.(.V..F.2-+...[...M[.r...4.U)..r...;]i.....y.r..g....g..&..F.H[......v..}....>.....,.6.Xt.n ......n......K..M'.8..t?./5..K..I.l.h43R..'..6.Z.r..M.j.]..o]..x......qJ4......==.=.!.e+..;.A.eW....3\.C.....v....rw.e....t.d.j.K\K...K...2_...I.....v....qJ'..~...9.z.$...!%.3...0.2...-?I..5B.zj..........}..FU.Bv!...Da..O5...Q](..Q..e....s#..a%.!.....A.8....eY...2V...^3g.f.f.<.....m....`....!...`....../..f.Hw...c!+".2=.`V.Df/..!xD...... (...`.,YK...@.......j...!...$.k.U....5{..Z..Jl}.fD}..........-.=.(.e.5.i.b8.I....p...df.......ZId>*C..j.2........Q....b...a`M...j.

Chrome Cache Entry: 165

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	HTML document, ASCII text, with very long lines (32087)
Category:	dropped
Size (bytes):	225748
Entropy (8bit):	5.4217948584749855
Encrypted:	false
SSDEEP:
MD5:	16AB0514080465433B7732B14C94D389
SHA1:	36E86421F4ABB715023B916C8FE97F16E5F00BCC
SHA-256:	8EA316A178A298E0993F9CFFCD2BF885E41FDB0A846F0DD52610CC371E35B30E
SHA-512:	026B39AA07B27CFDEB06454029F4675C3ED54AC62F018B9211EDD28F318B9B2C4EBDB4D1CEFBB938453D26C7A81BA5FFC97D2989B368FA3FA859A466ED4B397E
Malicious:	false
Reputation:	unknown
Preview:	if(typeof(window['convert'])=='undefined' \|\| typeof(window['convert']['doUseBackupData'])=='undefined') {.window['convertData']={"device":{"mobile":false,"tablet":false,"desktop":true},"geo":{"country":"US","city":"DALLAS","continent":"NA","state":"TX"},"generatedAt":"2024-10-23T20:48:15.826Z"};.var convert_temp = convert_temp \|\| {}; convert_temp.data = {"u_id":"10041543","prj":{"utc_of":"0","extset":{"d_anon":true,"autlnk":false,"gdprw":true,"dnt":"1","maxordv":99999,"minvis":5,"minconv":5,"stopTrackingGoalsAfterDays":30,"srm_check":false,"smart_recommendations":true,"stats_engine_processing":{"stats_type":"frequentist","power":80,"test_type":"one_tail","multiple_comparison_correction":"sidak","power_calculation_type":"none","fixed_mde":1,"decision_threshold":95},"mindays":999,"csmb":"$","version":"2024-10-21T13:25:18+00:00-2","gaUA":[],"minordv":0,"cname":null},"custom_domain":null,"id":"10041732","name":"Project #10041732","global_d":null,"domains":{"eventcreate.com":["eventcreate.c

Chrome Cache Entry: 166

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (10075)
Category:	dropped
Size (bytes):	273639
Entropy (8bit):	5.407791771882002
Encrypted:	false
SSDEEP:
MD5:	429E2C94AD6F3495539A7ABF95C6E608
SHA1:	2F6A84081093967BAA50E00D4DF7F8CC45CDD19D
SHA-256:	0B73D8C2668C726BB234CA3E92CE1FD27A00FCE21B84B68004FE67F8148A3507
SHA-512:	E190B37E45F489C28D0E3808F2227F9349069E0413F87AFB607AEAB7332197011D3D2B3D9FC9B7AE74C38863704BAC55A0F86349232C06AC518673F703C52B37
Malicious:	false
Reputation:	unknown
Preview:	google.maps.__gjsload__('common', function(_){var Iia,Hia,Kia,Qia,Tia,$ia,aja,dja,Ir,eja,Jr,fja,Kr,gja,Lr,Or,Qr,ija,kja,jja,mja,nja,pja,ys,rja,tja,uja,Js,yja,pt,Hja,Jja,Ija,Nja,Oja,Rja,Sja,Tja,Ut,$t,Yja,au,du,Zja,eu,$ja,hu,fka,tu,jka,uu,kka,lka,nka,pka,oka,rka,qka,mka,ska,tka,zu,uka,ala,ela,gla,ila,wla,Vla,Yla,bma,cma,kma,lma,mma,nma,rma,pma,qx,rx,tma,uma,vma,wma,yma,jw,kw,zma,fla,iw,lw,Nia,Oia,jla,Pia,Xia,Zia,Ema,Fma,Gma,Hma,Ima,yx,$v,Lma,Mma,Nma,Pma,Cla,Ula,Nla,vja,Ds;.Iia=function(a){const b=[];let c=a.length;var d=a[c-1];let e;if(_.Vg(d)){c--;e={};var f=0;for(const g in d)d[g]!=null&&(e[g]=Hia(d[g],a,g),f++);f\|\|(e=void 0)}for(d=0;d<c;d++)f=a[d],f!=null&&(b[d]=Hia(f,a,d+1));e&&b.push(e);return b};Hia=function(a,b,c){a instanceof _.mh&&(a=a.Eg(b,+c));return Array.isArray(a)?Iia(a):typeof a==="boolean"?a?1:0:typeof a==="number"?isNaN(a)\|\|a===Infinity\|\|a===-Infinity?String(a):a:a instanceof Uint8Array?_.cc(a):a instanceof _.jc?_.qc(a):a};_.Sq=function(a){return!!a.handled};._.Jia=funct

Chrome Cache Entry: 168

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	Web Open Font Format (Version 2), TrueType, length 20040, version 1.0
Category:	downloaded
Size (bytes):	20040
Entropy (8bit):	7.988990656521094
Encrypted:	false
SSDEEP:
MD5:	A61C670A24D6794A95A9712F0D12B656
SHA1:	C9B3114B27790109EC51508F51F1A033CCFE0812
SHA-256:	A4F5230D39A7A21971FE62CCDE2443345638D2BEAA369B752820390A687B91B6
SHA-512:	2D546BA3334476E0E3607AEC60B7FAEC310DF853866DB8ECFFD79136AAAB58860696797E193DBF531AB7E79EE10FCB8EE72B344C7D83E4553EF1A8BD4462D6C0
Malicious:	false
Reputation:	unknown
URL:	https://fonts.gstatic.com/s/arimo/v29/P5sMzZCDf9_T_10ZxCE.woff2
Preview:	wOF2......NH.......D..M..............................p..>?HVAR...`?STATV.../8....,....f.0.z.6.$..H. .....+...wx...'.v...5....6..0.u.....d..+.........e...P...y'.....MX. 8. ...X.n..d::...mN\|9(......qY.44x.....t..\|.16..&.....'.A..<....."..,.i.._.r.....A..y..3..`\|.8.U`...Q.Z...T...FdU5..e....v.NFw..:.C......MN....y.....A...9.Um..m.fQL,..?.....D...US&.zo.....:.....3..].o.`..)$.G..x.3.S;.$...NX..8.X>.-,..>..O]...e) .\|..{.I.T)/..?~lB\.B.....F...;-..Jo@H.E}Uu.UF..!.`...(..;.....s.........8...Nb.K.~..\hd......C........Z6On.A..}...hz..h....Q.6q:....$$!.@. 5hn....V...FMd.....r..eJ..s...?....n.yr. .K..L.t..L....P.....].c.VSt.../...P...@.....#....C>\~.F.....(!(.@J...u....@n..Dm..,.i<..NjrRO.&rfS...o[{...N...\|^...%a..........3.W.....$....Y....r.AJg..d......q.5......p...b=.-..'.7Ig....)..rH).e{.._...t....:A....8..v......(7.n.....\.Q..S5..S......t.6q.@.,c.....0.0..C;.7......i.k^.P.(q.+..>Q*....P.g..9 @.d.........#..".....yg![oe}$f=.........7.8.8..c.z..tzU......)rT4

Chrome Cache Entry: 169

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text
Category:	downloaded
Size (bytes):	1364
Entropy (8bit):	5.019341743709348
Encrypted:	false
SSDEEP:
MD5:	64F627411DED20157713C1E9BCB31798
SHA1:	23452B86E748BCFBD137AF6ED67C2F6A11008066
SHA-256:	1C1C2A7D550022A0B1D018EC5B8533302D0D5D88F7FCC2CDE739E2DF36770EA3
SHA-512:	12326BE70DB74DD9E7DDCA6525C0A33E0F72E5758ABF2A579131004FBFB7FFBB031DDCD137A36ABA2F9A7C89545FD0E8BD5D92F3254A857C2435004A0B87F942
Malicious:	false
Reputation:	unknown
URL:	https://www.eventcreate.com/assets/vendor/editor/plugins/quick_insert-a0d338d633ab4f29150cb1a8f0c4bdb7099b78c7a24191a9cf5e4ee30c3293fe.css
Preview:	/!. froala_editor v2.3.4 (https://www.froala.com/wysiwyg-editor). * License https://froala.com/wysiwyg-editor/terms/. * Copyright 2014-2016 Froala Labs. */...clearfix::after {. clear: both;. display: block;. content: "";.}..fr-quick-insert {. position: absolute;. z-index: 9998;. white-space: nowrap;. padding-right: 5px;. margin-left: -5px;. -webkit-box-sizing: content-box;. -moz-box-sizing: content-box;. box-sizing: content-box;.}..fr-quick-insert.fr-on a.fr-floating-btn svg {. -webkit-transform: rotate(135deg);. -moz-transform: rotate(135deg);. -ms-transform: rotate(135deg);. -o-transform: rotate(135deg);.}..fr-qi-helper {. position: absolute;. z-index: 3;. padding-left: 10px;. white-space: nowrap;.}..fr-qi-helper a.fr-btn.fr-floating-btn {. text-align: center;. display: inline-block;. color: #222222;. -webkit-opacity: 0;. -moz-opacity: 0;. opacity: 0;. -ms-filter: "progid:DXImageTransform.Microsoft.Alpha(Opacity=0)";. -webkit-transform: scale(0);. -moz-

Chrome Cache Entry: 170

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (7726)
Category:	dropped
Size (bytes):	345594
Entropy (8bit):	5.597489833974954
Encrypted:	false
SSDEEP:
MD5:	FC5B70735A047D492D3CFE32E7467EBB
SHA1:	61D5E8EFBD609D8CC717B9C7C074FF885D00DD65
SHA-256:	E84B5A5775F2A8167E3807C6E7997C24C829C8875B34E8BA8E88895DD40052F3
SHA-512:	5C91501214E286C80EB1EE6E91F0D6773C401704CB1C94A48C34ECB2E1D9939EF2404CEE41C1A2116CDD15A1ECC52EDB01FAA665DFD5533B67683AAEC2C6C4E3
Malicious:	false
Reputation:	unknown
Preview:	.// Copyright 2012 Google Inc. All rights reserved.. .(function(){..var data = {."resource": {. "version":"2",. . "macros":[{"function":"__e"},{"function":"__c","vtp_value":""},{"function":"__c","vtp_value":0}],. "tags":[{"function":"__ogt_dma","priority":17,"vtp_delegationMode":"ON","vtp_dmaDefault":"DENIED","tag_id":8},{"function":"__ogt_1p_data_v2","priority":17,"vtp_isAutoEnabled":true,"vtp_autoCollectExclusionSelectors":["list",["map","exclusionSelector",""]],"vtp_isEnabled":true,"vtp_cityType":"CSS_SELECTOR","vtp_manualEmailEnabled":false,"vtp_firstNameType":"CSS_SELECTOR","vtp_countryType":"CSS_SELECTOR","vtp_cityValue":"","vtp_emailType":"CSS_SELECTOR","vtp_regionType":"CSS_SELECTOR","vtp_autoEmailEnabled":true,"vtp_postalCodeValue":"","vtp_lastNameValue":"","vtp_phoneType":"CSS_SELECTOR","vtp_phoneValue":"","vtp_streetType":"CSS_SELECTOR","vtp_autoPhoneEnabled":false,"vtp_postalCodeType":"CSS_SELECTOR","vtp_emailValue":"","vtp_firstNameValue":"","vtp_streetValue":"","vtp_l

Chrome Cache Entry: 171

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	Web Open Font Format (Version 2), CFF, length 33364, version 1.0
Category:	downloaded
Size (bytes):	33364
Entropy (8bit):	7.991316807150341
Encrypted:	true
SSDEEP:
MD5:	86B0E13ED3341DB429C882647FEA7630
SHA1:	91451889AA6041B25E8A55CD5F960FCD3CAE56D5
SHA-256:	CCAAC2A8B85879C92BBD73E67512E8E8AB0E719AD0163193081EA6ABB20031CC
SHA-512:	B4163398B0A7C5C848E5A37ECEAA615B55E6D82BBFEC2A49A3FDC910F058B059277550BC9470EDFCF0D661041A14185671125AF93BA5B4F21DAC6D0019B9A832
Malicious:	false
Reputation:	unknown
URL:	https://use.typekit.net/af/d45b9a/000000000000000077359577/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
Preview:	wOF2OTTO...T....... .............................F...2?DYNA.W...?GDYN.q..V....`..,.6.$..8...... .......=i.x.....3R.z.TUUU..;U......g...o~..?..o........q=.y..i3.....}1.'...Cp.....Q....De{M...f..d.&..d....4..!.X,...b.X.w.9.tw....l .Z..A?.~._..q.c....ff...m0H.'...H_"%.bq#q.L...}.U.....-l..<.?.........0..2.Y..F.........r.....3....sWa7\|....%@.t{......H....5+o...x.....c)m..J...3.).?.......DCy..../.....t}......9.y;X.&-..=A4......."..x.A,U.24m.m...p_....<..?.2..D'.s3\|.nfF_..K..X..;t.Bi....B.4l.E...K..K.B.P..PS..r...I..I..073..q,d'ckX..bk+XC.T...J..._..[...hV@I.P..q.K....ov...6.f...;.........f...JTj.@...y.K.....Wg.. ..2J..N......h.8..?..?.s.Gw..X..Q....(\.3.....u..1.....6..H.ba.bFoD6..oZ3.....f.9ME..5.Zj..,5N..5.Rc..xjYq.r.ZN.3...?.{....G.B.#t.B-.3...+.v.O..c...........T .q....V.,:..\I...VQ../@...),.;aq.D.'...]E....h\T...E."xJ."..s..*.........t.4...K.....f...]a...z..B"\.".w...L.....vapr...b..Te.8....aq.x`..G.9....2Ld..}.V1.,9T.j.{......n.1...\..X..z.n...YC.6PD7o.

Chrome Cache Entry: 172

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	HTML document, Unicode text, UTF-8 text, with very long lines (9031)
Category:	downloaded
Size (bytes):	41955
Entropy (8bit):	5.157406054428232
Encrypted:	false
SSDEEP:
MD5:	A5607F4C00994AEDB2EE618ABFEC5E6A
SHA1:	71EBD358E09E94604AE73DE5C5988548C9BA22DD
SHA-256:	31E4E96772D1E3CEE965546CF5A06AA6E7749A3CCD06A036F685F4D77C43C159
SHA-512:	46C5B94B00524EACD464B8E9ADE3953F34C98A95D337795B6CE57E67494C54A4270C7C5F2FEBD623E835B1739B677A3A1886FC9EFCFB42FA3206592D5B8418BE
Malicious:	false
Reputation:	unknown
URL:	https://www.eventcreate.com/e/11-7-24-raleigh-11th-hou-614158
Preview:	<!DOCTYPE html>.<html lang="en" >. <head>. <title>11/6/24-Raleigh- 11th Hour Credit Hours \| November 06, 2024</title>. <meta name="description" content="Join us on November 06" />. <link rel="manifest" href="/manifest.json">. <meta name="robots" content="noindex, nofollow" />. <meta property="og:image" content="https://s3-us-west-1.amazonaws.com/eventcreate-v1/images/default_bg-ec.jpg" />. <meta property="og:url" content="https://www.eventcreate.com/e/11-7-24-raleigh-11th-hou-614158" />. <meta property="og:type" content="website" />. <meta property="og:title" content="11/6/24-Raleigh- 11th Hour Credit Hours \| November 06, 2024" />. <meta property="og:description" content="Join us on November 06" />. <meta name="google-site-verification" content="N3as54yWdnHGj6rqX9tI8Ba8niZb8dRYxQqfrqhmFis" />. <meta name="viewport" content="width=device-width">. <meta name="theme-color" content="#ffffff">. <link rel="apple-touch-icon" sizes="180x180" href="/app

Chrome Cache Entry: 173

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	Web Open Font Format (Version 2), TrueType, length 18536, version 1.0
Category:	downloaded
Size (bytes):	18536
Entropy (8bit):	7.986571198050597
Encrypted:	false
SSDEEP:
MD5:	8EFF0B8045FD1959E117F85654AE7770
SHA1:	227FEE13CEB7C410B5C0BB8000258B6643CB6255
SHA-256:	89978E658E840B927DDDB5CB3A835C7D8526ECE79933BD9F3096B301FE1A8571
SHA-512:	2E4FB65CAAB06F02E341E9BA4FB217D682338881DABA3518A0DF8DF724E0496E1AF613DB8E2F65B42B9E82703BA58916B5F5ABB68C807C78A88577030A6C2058
Malicious:	false
Reputation:	unknown
URL:	https://fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu4mxK.woff2
Preview:	wOF2......Hh..........H..............................Z..\|.`..J.T..<.....H..U..Z...x.6.$..0. ..t. ..I....p.0.VU.......1....AQ...d..x.....R..4.-.c..C$fUc.c..IX..@..~g.xs.....%...O...eJ.w..U.\|.......%..{.......U+..T#.S......`.n.....V.w.4..~P"..zk.%..../........=3...F.........V.FL..;Bc.........A.Uk.U1.b!Y.BH.DL...s.s...F.m.9a..GJ..1..#.`m5..DI..X5#.........B.Akm.....&..0...{.L.....G......-(.......O4.@3....=......f..l...$.....j..NO...e.Y.tJ2J>F.(.c....08..e...~....D2S7s:.G'Gm........!.7.........r.c.`,.....~.).......c>1.......Y.g2^...T-1.7./r./....>...g.ov@u.?.U.+._...'M..,.,g....!g..9."..yBF.#r+.Ps...%.d=....U...5.b.$:`.4R.II.<A....Q)....e...k.....M.8.z....+.....5}..F........F.d._...].~-](.Lf....Y..W....;-z...;. .@x._v../.%UIm....=s...P.C....G...^..Q.!g.!b._.P....at..?.}....t.z...O(..Y6..R.2.X....k.R..K.gw(.F.K?m..R...7....dj..7. .r.U..be.4......8.].w.B..B......Y..:..8.N..U...NEm...\.^q..f}.......{..6.". ...y-.Y...N.+.M E..`......R.$T

Chrome Cache Entry: 176

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (65401)
Category:	downloaded
Size (bytes):	175464
Entropy (8bit):	4.6645452077039415
Encrypted:	false
SSDEEP:
MD5:	ECDC916D490931E8B4AB760EE98169CC
SHA1:	95788193661A872232371A1E7C66D717642AAC92
SHA-256:	AF618FFA8F5FFB169CC7CC8A6B46DACF89A66A1E85098B0CDA6EF8B75FA0F5A1
SHA-512:	8F4F37468B92889C5AC8FAC829091FC6485A0A718EC3AAC0B4485C3EBB54C463A0EBB3358A8387F4FE04803A6D5D9D69E05BDE8986B8F9604E3BFE68364EE6DB
Malicious:	false
Reputation:	unknown
URL:	https://checkout.eventcreate.com/assets/vendor/fontawesome/fontawesome.css
Preview:	/! Font Awesome Pro 6.2.0 by @fontawesome - https://fontawesome.com.* License - https://fontawesome.com/license (Commercial License).* Copyright 2022 Fonticons, Inc.*/.fa{font-family:var(--fa-style-family,"Font Awesome 6 Pro");font-weight:var(--fa-style,900)}.fa,.fa-classic,.fa-sharp,.fas,.fa-solid,.far,.fa-regular,.fal,.fa-light,.fat,.fa-thin,.fad,.fa-duotone,.fass,.fa-sharp-solid,.fab,.fa-brands{-moz-osx-font-smoothing:grayscale;-webkit-font-smoothing:antialiased;display:var(--fa-display,inline-block);font-style:normal;font-variant:normal;line-height:1;text-rendering:auto}.fas,.fa-classic,.fa-solid,.far,.fa-regular,.fal,.fa-light,.fat,.fa-thin{font-family:'font awesome 6 pro'}.fab,.fa-brands{font-family:'font awesome 6 brands'}.fad,.fa-classic.fa-duotone,.fa-duotone{font-family:'font awesome 6 duotone'}.fass,.fa-sharp{font-family:'font awesome 6 sharp';font-weight:900}.fa-1x{font-size:1em}.fa-2x{font-size:2em}.fa-3x{font-size:3em}.fa-4x{font-size:4em}.fa-5x{font-size:5em}.fa-6x{fon

Chrome Cache Entry: 177

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text
Category:	downloaded
Size (bytes):	3592
Entropy (8bit):	4.822487706171142
Encrypted:	false
SSDEEP:
MD5:	717F19692380CD56B1FF08B8001DDE3F
SHA1:	77A590BA03BF625A183A9840448E7A433D5CB37E
SHA-256:	E92D623DF35D9E03354D50D8563DBE63D7F3D8DF49F078EAC86E1A032B1D03AC
SHA-512:	0AE03AA5EBC0F9D73356A9CCB1129FD77FC1BDEE503B93AD3E3C51F60DB3173997F08D6FC313814217544EE1FED8D66F55DF994E6323F487D8FEB8DA636881A9
Malicious:	false
Reputation:	unknown
URL:	https://checkout.eventcreate.com/assets/vendor/editor/plugins/table-c8c246dc0764355b0aab46a45a7fbf30b713f7e4ba435b4919dedc51e20e89c5.css
Preview:	/!. froala_editor v2.3.4 (https://www.froala.com/wysiwyg-editor). * License https://froala.com/wysiwyg-editor/terms/. * Copyright 2014-2016 Froala Labs. */...clearfix::after {. clear: both;. display: block;. content: "";.}..fr-element table td.fr-selected-cell,..fr-element table th.fr-selected-cell {. border: 1px double #1e88e5;.}..fr-element table tr {. user-select: none;. -o-user-select: none;. -moz-user-select: none;. -khtml-user-select: none;. -webkit-user-select: none;. -ms-user-select: none;.}..fr-element table td,..fr-element table th {. user-select: text;. -o-user-select: text;. -moz-user-select: text;. -khtml-user-select: text;. -webkit-user-select: text;. -ms-user-select: text;.}..fr-element .fr-no-selection table td,..fr-element .fr-no-selection table th {. user-select: none;. -o-user-select: none;. -moz-user-select: none;. -khtml-user-select: none;. -webkit-user-select: none;. -ms-user-select: none;.}..fr-table-resizer {. cursor: col-resize;. posi

Chrome Cache Entry: 178

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	assembler source, ASCII text, with very long lines (302)
Category:	downloaded
Size (bytes):	487959
Entropy (8bit):	4.93665723297772
Encrypted:	false
SSDEEP:
MD5:	70D2829F8F1AF4E37EC7C83FA8CD8B93
SHA1:	F6EDD788E09F6FA7984AE7D1CC4439F2243B17A4
SHA-256:	B67C8039DFC0744A9E37B0E5AA5C21F2A69FFA2FAF44DFB2AFA816B8CFFC856B
SHA-512:	15DB7C7F18B0595E64EEB008F9BFCFB4832B89E06E0E0ECC02AC1DA6C61CB6DF27452EDCAF47691A94E9897CB30C40396B843BA7AC849806182439EC6D2CF2E6
Malicious:	false
Reputation:	unknown
URL:	https://checkout.eventcreate.com/assets/core-5f2e7c0545a490498acf27c23e1add7a1dd009120dc7278364a579a8584965d8.css
Preview:	/* line 6, app/assets/stylesheets/styles/scaffolds.scss /. {. margin: 0;. padding: 0;. box-sizing: border-box;.}../* line 12, app/assets/stylesheets/styles/scaffolds.scss /.:before,.:after {. box-sizing: inherit;.}../ line 17, app/assets/stylesheets/styles/scaffolds.scss /..container {. position: relative;.}../ line 22, app/assets/stylesheets/styles/scaffolds.scss /..col-xs-5ths,..col-sm-5ths,..col-md-5ths,..col-lg-5ths {. position: relative;. min-height: 1px;. padding-right: 15px;. padding-left: 15px;.}../ line 32, app/assets/stylesheets/styles/scaffolds.scss /..col-xs-5ths {. width: 20%;. float: left;.}..@media (min-width: 768px) {. / line 38, app/assets/stylesheets/styles/scaffolds.scss /. .col-sm-5ths {. width: 20%;. float: left;. }.}..@media (min-width: 992px) {. / line 45, app/assets/stylesheets/styles/scaffolds.scss /. .col-md-5ths {. width: 20%;. float: left;. }.}..@media (min-width: 1200px) {. / line 52, app/assets/stylesheets/styl

Chrome Cache Entry: 179

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text
Category:	downloaded
Size (bytes):	5
Entropy (8bit):	1.5219280948873621
Encrypted:	false
SSDEEP:
MD5:	83D24D4B43CC7EEF2B61E66C95F3D158
SHA1:	F0CAFC285EE23BB6C28C5166F305493C4331C84D
SHA-256:	1C0FF118A4290C99F39C90ABB38703A866E47251B23CCA20266C69C812CCAFEB
SHA-512:	E6E84563D3A55767F8E5F36C4E217A0768120D6E15CE4D01AA63D36AF7EC8D20B600CE96DCC56DE91EC7E55E83A8267BADDD68B61447069B82ABDB2E92C6ACB6
Malicious:	false
Reputation:	unknown
URL:	https://p.typekit.net/p.css?s=1&k=zhs3prf&ht=tk&f=139.173.175.176.25136.29423&a=625374&app=typekit&e=css
Preview:	/**/.

Chrome Cache Entry: 180

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (32746)
Category:	downloaded
Size (bytes):	37000
Entropy (8bit):	5.11271394812706
Encrypted:	false
SSDEEP:
MD5:	492939887FC161691148A60340162F8A
SHA1:	E5F6284B558F3588FDC4F959F68914EF3042A6AB
SHA-256:	A7BFDFBD2FEE539589EF513EEFE26B630E543CBDE9D99A371757033189D830E9
SHA-512:	DF4E4B956E646EE8276526C445D003308ECB8EE94BC4493F668737B942A5E5B61B767DF8B6B0353CEBD847247A5709F7D534498C92EDC5DCCDB957EE90D2DF13
Malicious:	false
Reputation:	unknown
URL:	https://www.eventcreate.com/assets/vendor/bootstrap/3.3.7/js/bootstrap.min.js
Preview:	/!. Bootstrap v3.3.7 (http://getbootstrap.com). * Copyright 2011-2016 Twitter, Inc.. * Licensed under the MIT license. */.if("undefined"==typeof jQuery)throw new Error("Bootstrap's JavaScript requires jQuery");!function(){"use strict";var t=jQuery.fn.jquery.split(" ")[0].split(".");if(t[0]<2&&t[1]<9\|\|1==t[0]&&9==t[1]&&t[2]<1\|\|t[0]>3)throw new Error("Bootstrap's JavaScript requires jQuery version 1.9.1 or higher, but lower than version 4")}(),function(t){"use strict";function e(){var t=document.createElement("bootstrap"),e={WebkitTransition:"webkitTransitionEnd",MozTransition:"transitionend",OTransition:"oTransitionEnd otransitionend",transition:"transitionend"};for(var i in e)if(void 0!==t.style[i])return{end:e[i]};return!1}t.fn.emulateTransitionEnd=function(e){var i=!1,o=this;return t(this).one("bsTransitionEnd",function(){i=!0}),setTimeout(function(){i\|\|t(o).trigger(t.support.transition.end)},e),this},t(function(){t.support.transition=e(),t.support.transition&&(t.event.special.bsT

Chrome Cache Entry: 181

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (63798)
Category:	downloaded
Size (bytes):	492993
Entropy (8bit):	5.500407842630204
Encrypted:	false
SSDEEP:
MD5:	D91D37831BCD0227D38A03D0BDE8BACF
SHA1:	3D2FC305410D0DC9A9E3AC03026F039BFC62DD5E
SHA-256:	53DD3CFF565184EA9191D1AEE23621A975AACA90B10658DA954746512D55EE7B
SHA-512:	3232BA6FC787D11BA298A9B5F728EEC05C8389AF53CE372CF5EC3E6E821CB091C0FBB13355CF78DA5FACD6D1BB6909293A86A722920A4CB5A78928DC4C3F4759
Malicious:	false
Reputation:	unknown
URL:	https://www.eventcreate.com/assets/application-803a23c9134e28b057481e70b319a7d0e0e4a0219d3516e84ca1d9a8fa09f7ff.css
Preview:	/.. // notice I'm only requiring main.scss.../../.. /..@charset "UTF-8";.@import url(/assets/vendor/editor/plugins/char_counter-25758a00f9e39ceb28448b6d661166ca13da4898a20b2f9a874a0f43783bc454.css);.@import url(/assets/vendor/editor/plugins/code_view-34e76924ed11fe182a0df0e9f6f87c6d87047b100110ecb23f80f9ed306f1ac4.css);.@import url(/assets/vendor/editor/plugins/colors-7efb640b07d8b199d6af44580d5b8bc422cedb8a9eba382f181e676bf9fac9ad.css);.@import url(/assets/vendor/editor/plugins/emoticons-f39112dd706dc39468e6d06db21628897e9f02ddef7aa43dfa0ca65b1d674483.css);.@import url(/assets/vendor/editor/plugins/file-137359383ea1affec6591077d2c9a6d44224c1620fad82720bd2eb63c7d8aad9.css);.@import url(/assets/vendor/editor/plugins/fullscreen-5798f8134e2200989b20c95dbe425dfb43d48c9097d9112d0458fac89cc977bb.css);.@import url(/assets/vendor/editor/plugins/image-bf9fdfbcf97b5838cd466373b87b089a2bba74f98aa08c638c9c23b6eac75fe3.css);.@import url(/assets/vendor/editor/plugins/image_manager-9ff124439f9

Chrome Cache Entry: 183

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1600x1067, components 3
Category:	downloaded
Size (bytes):	227245
Entropy (8bit):	7.910281176201123
Encrypted:	false
SSDEEP:
MD5:	2A403FFF0F17E43941CFEA5FA9FBE499
SHA1:	3BD39ECA4617AB9F7D8D56D1FD71191658D7F4FA
SHA-256:	C9952AC2D3A119041151A9F0AC76789213F722512CD08EBBF1F01DA490B466B0
SHA-512:	F82558EA582B7600F63A62164ED544F036FBD706760F6F11A101786E3D0E16984E9D60A6D1D1987C0EB11CC1232C785AC8181444A0881589E6F2D85DA4C79E1A
Malicious:	false
Reputation:	unknown
URL:	https://res.cloudinary.com/eventcreate/image/upload/v1562721766/themes/theme%20assets/neonbrand-1-aA2Fadydc-unsplash_nyunsb.jpg
Preview:	......Exif..II*.................Ducky.......<......http://ns.adobe.com/xap/1.0/.<?xpacket begin="." id="W5M0MpCehiHzreSzNTczkc9d"?> <x:xmpmeta xmlns:x="adobe:ns:meta/" x:xmptk="Adobe XMP Core 5.6-c140 79.160451, 2017/05/06-01:08:21 "> <rdf:RDF xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"> <rdf:Description rdf:about="" xmlns:xmpMM="http://ns.adobe.com/xap/1.0/mm/" xmlns:stRef="http://ns.adobe.com/xap/1.0/sType/ResourceRef#" xmlns:xmp="http://ns.adobe.com/xap/1.0/" xmpMM:DocumentID="xmp.did:BC1B11FE974911E98830B0318DD80003" xmpMM:InstanceID="xmp.iid:BC1B11FD974911E98830B0318DD80003" xmp:CreatorTool="Adobe Photoshop CC 2018 Macintosh"> <xmpMM:DerivedFrom stRef:instanceID="6ABA763680A7BF1AE3779358FD5EA2F3" stRef:documentID="6ABA763680A7BF1AE3779358FD5EA2F3"/> </rdf:Description> </rdf:RDF> </x:xmpmeta> <?xpacket end="r"?>....Adobe.d.............................................................................................................................................

Chrome Cache Entry: 184

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	HTML document, ASCII text, with very long lines (2900), with no line terminators
Category:	downloaded
Size (bytes):	2900
Entropy (8bit):	5.782555238074223
Encrypted:	false
SSDEEP:
MD5:	A0708D7FFDDA8CED5BFEB16C12B19D36
SHA1:	C9320EB9FC3C8460F7924ED2245C6EA3091B9DAA
SHA-256:	21EDA76A75BE2B4D0C47094A2D630383C88C1D14D4BC1575CFE22E05A30D61F3
SHA-512:	92701C66BBFD48E015D49D44875BE07F731E143AE98BE40BE507D2BEE1F99EC1498CCD3F4C47E33C5328985F842E2B192AC36AA080C534AC74135547117FBFC8
Malicious:	false
Reputation:	unknown
URL:	https://td.doubleclick.net/td/rul/940862296?random=1729716499175&cv=11&fst=1729716499175&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be4ah0v9168882605za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=101686685~101794737~101823847&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.eventcreate.com%2Fe%2F11-7-24-raleigh-11th-hou-614158&hn=www.googleadservices.com&frm=0&tiba=11%2F6%2F24-Raleigh-%2011th%20Hour%20Credit%20Hours%20%7C%20November%2006%2C%202024&npa=0&pscdl=noapi&auid=1390798826.1729716499&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config
Preview:	<html><head><meta http-equiv="origin-trial" content="Avh5Ny0XEFCyQ7+oNieXskUrqY8edUzL5/XrwKlGjARQHW4TFRK+jVd5HnDIpY20n5OLHfgU4ku7x48N3uhG/A0AAABxeyJvcmlnaW4iOiJodHRwczovL2RvdWJsZWNsaWNrLm5ldDo0NDMiLCJmZWF0dXJlIjoiUHJpdmFjeVNhbmRib3hBZHNBUElzIiwiZXhwaXJ5IjoxNjk1MTY3OTk5LCJpc1N1YmRvbWFpbiI6dHJ1ZX0="></head><body><script>var ig_list={"interestGroups":[{"action":0,"expirationTimeInSeconds":2592000,"interestGroupAttributes":{"owner":"https://td.doubleclick.net","name":"4s1390798826.1729716499","biddingLogicUrl":"https://td.doubleclick.net/td/bjs","dailyUpdateUrl":"https://td.doubleclick.net/td/update?ig_name=4s1390798826.1729716499\u0026ig_key=1sNHMxMzkwNzk4ODI2LjE3Mjk3MTY0OTk!2sZ0DuFQ!3sAAptDV7fBc-A","trustedBiddingSignalsUrl":"https://td.doubleclick.net/td/bts","trustedBiddingSignalsKeys":["1sC77vCg!2sZ0DuFQ!3sAAptDV7fBc-A"],"userBiddingSignals":[["844744926","541711576","597845763"],null,1729716501539575],"ads":[{"renderUrl":"https://tdsf.doubleclick.net/td/adfetch/gda?adg_id=16721141423

Chrome Cache Entry: 185

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (4935), with no line terminators
Category:	downloaded
Size (bytes):	4935
Entropy (8bit):	5.828151795787187
Encrypted:	false
SSDEEP:
MD5:	C6961418CCC7EF88F6E88FCA13046E2C
SHA1:	9742EEE919CD3D87D3420847668A4A62E18D5B9B
SHA-256:	123CCA2DD1E654063FE16203373B7B3AB2FE32CD5931FE5BF2D5FF8CDF1ECAFF
SHA-512:	2F8667EBD341FE77F874DF2A66A7BC0F60DED279F17AA77A0DADB0C50363FBD7A11B806B31387A339F375F6777B1D74B9C5D3C27809786204ADBD64AB57DD4F4
Malicious:	false
Reputation:	unknown
URL:	https://googleads.g.doubleclick.net/pagead/viewthroughconversion/940862296/?random=1729716570104&cv=11&fst=1729716570104&bg=ffffff&guid=ON&async=1&gtm=45be4ah0v9168882605za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=101686685~101794737~101823847&u_w=1280&u_h=1024&url=https%3A%2F%2Fcheckout.eventcreate.com%2F11-7-24-raleigh-11th-hou-614158%2Fregister-details%3Foid%3D384e8ae7-a9d0-486d-91dd-3f11895a5308&ref=https%3A%2F%2Fwww.eventcreate.com%2F&hn=www.googleadservices.com&frm=0&tiba=11%2F6%2F24-Raleigh-%2011th%20Hour%20Credit%20Hours%20%7C%20Registration%20closed&npa=0&pscdl=noapi&auid=1390798826.1729716499&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config&rfmt=3&fmt=4
Preview:	(function(){var s = {};(function(){var h=typeof Object.defineProperties=="function"?Object.defineProperty:function(a,b,d){if(a==Array.prototype\|\|a==Object.prototype)return a;a[b]=d.value;return a};function k(a){a=["object"==typeof globalThis&&globalThis,a,"object"==typeof window&&window,"object"==typeof self&&self,"object"==typeof global&&global];for(var b=0;b<a.length;++b){var d=a[b];if(d&&d.Math==Math)return d}throw Error("Cannot find global object");} var m=k(this),p=typeof Symbol==="function"&&typeof Symbol("x")==="symbol",t={},v={};function w(a,b,d){if(!d\|\|a!=null){d=v[b];if(d==null)return a[b];d=a[d];return d!==void 0?d:a[b]}} function x(a,b,d){if(b)a:{var c=a.split(".");a=c.length===1;var e=c[0],g;!a&&e in t?g=t:g=m;for(e=0;e<c.length-1;e++){var f=c[e];if(!(f in g))break a;g=g[f]}c=c[c.length-1];d=p&&d==="es6"?g[c]:null;b=b(d);b!=null&&(a?h(t,c,{configurable:!0,writable:!0,value:b}):b!==d&&(v[c]===void 0&&(a=Math.random()*1E9>>>0,v[c]=p?m.Symbol(c):"$jscp$"+a+"$"+c),h(g,v[c],{co

Chrome Cache Entry: 187

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text
Category:	downloaded
Size (bytes):	560
Entropy (8bit):	4.9127347507687436
Encrypted:	false
SSDEEP:
MD5:	24E1892DFA420285CA1229C95BBBA9C1
SHA1:	0D43D2A00C4F6A6BFFC754AE254DA09476088EC1
SHA-256:	D5147A00A1710D634E7EC615B5147383BAD58FB880432A9CC82E490E0F7FF727
SHA-512:	656C9230D2995B9F0E9DC83AB7119BF0A1684F41DB3EC14451F26FBD24597A7254172EAAF7EB430B9A996A4CDDFB5EE2C8AE2C256947E193B28DFC63025B4C5E
Malicious:	false
Reputation:	unknown
URL:	https://checkout.eventcreate.com/assets/vendor/editor/plugins/fullscreen-5798f8134e2200989b20c95dbe425dfb43d48c9097d9112d0458fac89cc977bb.css
Preview:	/!. froala_editor v2.3.4 (https://www.froala.com/wysiwyg-editor). * License https://froala.com/wysiwyg-editor/terms/. * Copyright 2014-2016 Froala Labs. */..body.fr-fullscreen {. overflow: hidden;. height: 100%;. width: 100%;. position: fixed;.}..fr-box.fr-fullscreen {. margin: 0 !important;. position: fixed;. top: 0;. left: 0;. bottom: 0;. right: 0;. z-index: 9990 !important;. width: auto !important;.}..fr-box.fr-fullscreen .fr-toolbar.fr-top {. top: 0 !important;.}..fr-box.fr-fullscreen .fr-toolbar.fr-bottom {. bottom: 0 !important;.}.

Chrome Cache Entry: 190

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text
Category:	downloaded
Size (bytes):	506
Entropy (8bit):	5.002442227774315
Encrypted:	false
SSDEEP:
MD5:	1BBDE7A7889A462850D9169F2A9C1209
SHA1:	2C0EB7C6B5EADDAE2CAA4C5ABB5AFA109CC0F2F1
SHA-256:	96CDA049C07EC6185AB420028ACFF7FB56823A64B5C7EC8E3620028921670B6D
SHA-512:	3C84DE4B360AA409647C327C6B7A7B9761E0E09D7AB339D7FA34A312A5CE50E744B6E0C45FC6B620A7554103C02991DC0983920AFF307CFD9EF6790CF79AA500
Malicious:	false
Reputation:	unknown
URL:	https://www.eventcreate.com/assets/vendor/editor/plugins/line_breaker-e33d936b0969fcc6804a00bab1b3237f32a9aa518c1fa0b9b62e5fc747d2af08.css
Preview:	/!. froala_editor v2.3.4 (https://www.froala.com/wysiwyg-editor). * License https://froala.com/wysiwyg-editor/terms/. * Copyright 2014-2016 Froala Labs. */...clearfix::after {. clear: both;. display: block;. content: "";.}..fr-line-breaker {. cursor: text;. border-top: 1px solid #1e88e5;. position: fixed;. z-index: 2;. display: none;.}..fr-line-breaker.fr-visible {. display: block;.}..fr-line-breaker a.fr-floating-btn {. position: absolute;. left: calc(50% - (32px / 2));. top: -16px;.}.

Chrome Cache Entry: 194

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text
Category:	downloaded
Size (bytes):	11922
Entropy (8bit):	4.9419938843080775
Encrypted:	false
SSDEEP:
MD5:	B4D82BC11B6C24757E1D1E38FBC4D69D
SHA1:	7E748176B7268AF7865436612D2C8D1B7C601901
SHA-256:	5159094A5B9498CA33EF9ADB2D62EFE2CC5F115F0068050CF43B56387A91CAA7
SHA-512:	36312D1152EB59081108A50F6BE8E584A5C7F198FE9E46A68FF77C1C6B7EBDB9AC85298D8FD961ACE77B228646E4F67E767A01222D01AB1DC04D8E7EA7DD3861
Malicious:	false
Reputation:	unknown
URL:	https://checkout.eventcreate.com/assets/vendor/editor/plugins/image_manager-9ff124439f9c02eb01970b62eaaeb3a8cea8c1bbb8d6cb354bcef61128fbb634.css
Preview:	/!. froala_editor v2.3.4 (https://www.froala.com/wysiwyg-editor). * License https://froala.com/wysiwyg-editor/terms/. * Copyright 2014-2016 Froala Labs. */...clearfix::after {. clear: both;. display: block;. content: "";.}.body.prevent-scroll {. overflow: hidden;.}.body.prevent-scroll.fr-mobile {. position: fixed;. -webkit-overflow-scrolling: touch;.}..fr-modal {. position: fixed;. overflow-x: auto;. overflow-y: scroll;. top: 0;. left: 0;. bottom: 0;. right: 0;. text-align: center;. width: 100%;. z-index: 9999;.}..fr-modal .fr-modal-wrapper {. border-radius: 2px;. -moz-border-radius: 2px;. -webkit-border-radius: 2px;. -moz-background-clip: padding;. -webkit-background-clip: padding-box;. background-clip: padding-box;. margin: 20px auto;. display: inline-block;. background: #ffffff;. min-width: 300px;. text-align: center;. -webkit-box-shadow: 0 5px 8px rgba(0, 0, 0, 0.19), 0 4px 6px rgba(0, 0, 0, 0.23);. -moz-box-shadow: 0 5px 8px rgba(0, 0, 0, 0.19), 0 4

Chrome Cache Entry: 195

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (7726)
Category:	downloaded
Size (bytes):	345588
Entropy (8bit):	5.597473695682241
Encrypted:	false
SSDEEP:
MD5:	F29ED5B6AB525AC8426C0D93ACE3CF7C
SHA1:	51ABBD6C15A0D500E0684E7CF220EF9ED176C372
SHA-256:	219C944D20948B282D124E955C167EA44A635B5FBEE65F602807B47F7A7DA070
SHA-512:	F249B1554AB4752E7230C8F0A43C91656973B6EECBFCF3251D2854A05DD75A9C98ED7BD2F538B06E4C092BF160407742B00411B2CBC4B1334826366FDFA19BAE
Malicious:	false
Reputation:	unknown
URL:	https://www.googletagmanager.com/gtag/js?id=G-EF10HYHXFS&l=dataLayer&cx=c
Preview:	.// Copyright 2012 Google Inc. All rights reserved.. .(function(){..var data = {."resource": {. "version":"2",. . "macros":[{"function":"__e"},{"function":"__c","vtp_value":""},{"function":"__c","vtp_value":0}],. "tags":[{"function":"__ogt_dma","priority":17,"vtp_delegationMode":"ON","vtp_dmaDefault":"DENIED","tag_id":8},{"function":"__ogt_1p_data_v2","priority":17,"vtp_isAutoEnabled":true,"vtp_autoCollectExclusionSelectors":["list",["map","exclusionSelector",""]],"vtp_isEnabled":true,"vtp_cityType":"CSS_SELECTOR","vtp_manualEmailEnabled":false,"vtp_firstNameType":"CSS_SELECTOR","vtp_countryType":"CSS_SELECTOR","vtp_cityValue":"","vtp_emailType":"CSS_SELECTOR","vtp_regionType":"CSS_SELECTOR","vtp_autoEmailEnabled":true,"vtp_postalCodeValue":"","vtp_lastNameValue":"","vtp_phoneType":"CSS_SELECTOR","vtp_phoneValue":"","vtp_streetType":"CSS_SELECTOR","vtp_autoPhoneEnabled":false,"vtp_postalCodeType":"CSS_SELECTOR","vtp_emailValue":"","vtp_firstNameValue":"","vtp_streetValue":"","vtp_l

Chrome Cache Entry: 196

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	Web Open Font Format (Version 2), TrueType, length 32972, version 1.0
Category:	downloaded
Size (bytes):	32972
Entropy (8bit):	7.993219721506124
Encrypted:	true
SSDEEP:
MD5:	CCC822C8AEE131FCB221FC3257A83991
SHA1:	E15730E1E1ED021B25B89C81309308D67A3C0172
SHA-256:	C8E4DF00BDAD9EE1602DED3B28CA40610B3866740F0D70272FFAAF748DEDF694
SHA-512:	BC4259432CB5B2A29A54596C20D61678071A1AAA20FA63E09E744C7AA74C15302D17E7673162BEA7AD4B39BEAF537CD5CA176807388777C30012EE965277F5B1
Malicious:	false
Reputation:	unknown
URL:	https://fonts.gstatic.com/s/nunitosans/v15/pe0RMImSLYBIv1o4X1M8cce4OdVisMz5nZRqy6cmmmU3t2FQWEAEOvV9wNvrwlNstMKW3Y6K5WMwd-laLQ.woff2
Preview:	wOF2...................R..............................n...?HVAR..?MVARb.`?STAT.v'2..2/d.....h....N.0..b.6.$.... ...../..[v.Q.6....m..U...c....fA../0.....a.1....g%..3...c.@..!.(..YF.K...%..@ks.s.]Y.z..Cy.h.W.........2N.E&...Wx.w$d.z.M...d....r>.Qf....dX.0..T._'.m..a_.H..t....v..>...Omr....j...^..V..gtR..o....qk\|"j.x..u}V....i..(2!....."......_.1.H.-.....H.r.q.!i`5b..&"F..."ec....P....~.7..D..Q...r..I.\..7.!..$@BD.]'V...:.5.n..;.n.u..<O..y.}.........Q...H.C.Y.7<?..4.....G......q.]8......X;.m........f..U.W4.w....].TN..0....;.d..l:... ^.#.......B..P.e[.S..x.$..z.....h..........^...<.. .2...$%.TT..uFj..T...RP..{.K...Bh.XIy.Fx........L~F.~.W.!6d................Il..M......H......d.....Z..z.....Wg..%.d;....D..A.....$Ew....h.q..2N.[p....8Z.C.%p.&...N.......E.E..&:.....P.?uB`.;...Q.A7..Pl._.CK......,[=.............)..dIO...l/....t.#.,.,o.B....L.fz...T%Q.gb.j..$.\.~U.....b....H+..)b..'..R.[.Mi....3.../..,....IhT..:...L......T.e.5..'E $...._.....PJ.......:.

Chrome Cache Entry: 200

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (4936), with no line terminators
Category:	dropped
Size (bytes):	4936
Entropy (8bit):	5.829955102593729
Encrypted:	false
SSDEEP:
MD5:	3D51691A59C3B5C7C6F74FAB512F31B3
SHA1:	59B713C07D1D92799CEB5471045D9216C0591AB2
SHA-256:	B3182ABCF5080BEC7A467DF57C829A42334C588D4881E3AE032B93A6BBA993C9
SHA-512:	8CD4AF87C2A03077B873E426F64267FFBB9D6D0A2915D6BD069A241DB374A8C5837A7EA5880722F68B380E9BE56A4D18937344DC2D702B3E877C632D9C5B9C6D
Malicious:	false
Reputation:	unknown
Preview:	(function(){var s = {};(function(){var h=typeof Object.defineProperties=="function"?Object.defineProperty:function(a,b,d){if(a==Array.prototype\|\|a==Object.prototype)return a;a[b]=d.value;return a};function k(a){a=["object"==typeof globalThis&&globalThis,a,"object"==typeof window&&window,"object"==typeof self&&self,"object"==typeof global&&global];for(var b=0;b<a.length;++b){var d=a[b];if(d&&d.Math==Math)return d}throw Error("Cannot find global object");} var m=k(this),p=typeof Symbol==="function"&&typeof Symbol("x")==="symbol",t={},v={};function w(a,b,d){if(!d\|\|a!=null){d=v[b];if(d==null)return a[b];d=a[d];return d!==void 0?d:a[b]}} function x(a,b,d){if(b)a:{var c=a.split(".");a=c.length===1;var e=c[0],g;!a&&e in t?g=t:g=m;for(e=0;e<c.length-1;e++){var f=c[e];if(!(f in g))break a;g=g[f]}c=c[c.length-1];d=p&&d==="es6"?g[c]:null;b=b(d);b!=null&&(a?h(t,c,{configurable:!0,writable:!0,value:b}):b!==d&&(v[c]===void 0&&(a=Math.random()*1E9>>>0,v[c]=p?m.Symbol(c):"$jscp$"+a+"$"+c),h(g,v[c],{co

Chrome Cache Entry: 203

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	Unicode text, UTF-8 text, with very long lines (516)
Category:	downloaded
Size (bytes):	4799
Entropy (8bit):	5.252596719799013
Encrypted:	false
SSDEEP:
MD5:	1A2D37C60B9CA5A4A1B5D0C227A8DE15
SHA1:	62BB07695E162E9CC43BE5C8CEED99ED882CE233
SHA-256:	318D3663747F0FA6FFEA443F5EA000C6B4ACC33F2592E157AFA968294997C76D
SHA-512:	01D5011DCCA0F8B9BD463D85DDDEF454A05D4CD3E09982449B5906B3F35DDC7BE35D5F0CB108F1363489E92E7C70ABEB737075840DAEE8641EA20DADFD6A8C79
Malicious:	false
Reputation:	unknown
URL:	https://use.typekit.net/zhs3prf.css
Preview:	/. The Typekit service used to deliver this font or fonts for use on websites. * is provided by Adobe and is subject to these Terms of Use. * http://www.adobe.com/products/eulas/tou_typekit. For font license. * information, see the list below.. . miller-display:. * - http://typekit.com/eulas/00000000000000003b9ae134. * proxima-nova:. * - http://typekit.com/eulas/000000000000000077359562. * - http://typekit.com/eulas/000000000000000077359571. * - http://typekit.com/eulas/000000000000000077359577. * - http://typekit.com/eulas/00000000000000007735957a. * - http://typekit.com/eulas/000000000000000077359583. . . 2009-2024 Adobe Systems Incorporated. All Rights Reserved.. /./{"last_published":"2021-05-03 19:07:39 UTC"}*/..@import url("https://p.typekit.net/p.css?s=1&k=zhs3prf&ht=tk&f=139.173.175.176.25136.29423&a=625374&app=typekit&e=css");..@font-face {.font-family:"proxima-nova";.src:url("https://use.typekit.net/af/98e3f6/000000000000000077359562/30/l?primer=7cdcb44

Chrome Cache Entry: 204

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (3969)
Category:	downloaded
Size (bytes):	283790
Entropy (8bit):	5.547041035308161
Encrypted:	false
SSDEEP:
MD5:	173FE02A8DD21CC31FF9CC41B726F276
SHA1:	50B5490F6E7547AA517390A896B667ACA4AD054A
SHA-256:	86D75853A9C5F48829770B8B633BC0B5073A286044D4EE7CD6EBE218A26346DD
SHA-512:	8E8B5693C17BCCFA4894C145AFB627B733FC1F41947F6CE089FE2A2ABF147B336E3A49D1A24DF420101575BC23C999C1CE8DFA2E632DF628E7B2FC45A6DCDA8C
Malicious:	false
Reputation:	unknown
URL:	https://www.googletagmanager.com/gtag/js?id=AW-940862296
Preview:	.// Copyright 2012 Google Inc. All rights reserved.. .(function(){..var data = {."resource": {. "version":"2",. . "macros":[{"function":"__e"}],. "tags":[{"function":"__ogt_ads_datatos","priority":16,"vtp_instanceDestinationId":"AW-940862296","tag_id":16},{"function":"__ogt_dma","priority":6,"vtp_delegationMode":"ON","vtp_dmaDefault":"DENIED","tag_id":8},{"function":"__ogt_1p_data_v2","priority":6,"vtp_isAutoEnabled":true,"vtp_autoCollectExclusionSelectors":["list",["map","exclusionSelector",""]],"vtp_isEnabled":true,"vtp_cityType":"CSS_SELECTOR","vtp_manualEmailEnabled":false,"vtp_firstNameType":"CSS_SELECTOR","vtp_countryType":"CSS_SELECTOR","vtp_cityValue":"","vtp_emailType":"CSS_SELECTOR","vtp_regionType":"CSS_SELECTOR","vtp_autoEmailEnabled":true,"vtp_postalCodeValue":"","vtp_lastNameValue":"","vtp_phoneType":"CSS_SELECTOR","vtp_phoneValue":"","vtp_streetType":"CSS_SELECTOR","vtp_autoPhoneEnabled":false,"vtp_postalCodeType":"CSS_SELECTOR","vtp_emailValue":"","vtp_firstNameValu

Chrome Cache Entry: 208

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	JSON data
Category:	dropped
Size (bytes):	3
Entropy (8bit):	1.584962500721156
Encrypted:	false
SSDEEP:
MD5:	8A80554C91D9FCA8ACB82F023DE02F11
SHA1:	5F36B2EA290645EE34D943220A14B54EE5EA5BE5
SHA-256:	CA3D163BAB055381827226140568F3BEF7EAAC187CEBD76878E0B63E9E442356
SHA-512:	CA4B6DEFB8ADCC010050BC8B1BB8F8092C4928B8A0FBA32146ABCFB256E4D91672F88CA2CDF6210E754E5B8AC5E23FB023806CCD749AC8B701F79A691F03C87A
Malicious:	false
Reputation:	unknown
Preview:	{}.

Chrome Cache Entry: 211

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	HTML document, ASCII text, with very long lines (2922), with no line terminators
Category:	downloaded
Size (bytes):	2922
Entropy (8bit):	5.775763566798777
Encrypted:	false
SSDEEP:
MD5:	CC952EA6EA78E13AF3FB6428072740FE
SHA1:	3FFA2DD7259E931D30D9BD7009108E54E50B776A
SHA-256:	ED0E24953017FDD2E09C889F80A4D9CB2D2EC2E1BF9F460266026ECD44E8F077
SHA-512:	CA11939EB8E4D9F374C254272A729EF63629C2D6BEDE9B19E95DC88A962E46ED0239CDF96A7786EDAE59A94D54852289AC837E2CECCFF0BCBE3E84A72F1B1287
Malicious:	false
Reputation:	unknown
URL:	https://td.doubleclick.net/td/rul/940862296?random=1729716570104&cv=11&fst=1729716570104&fmt=3&bg=ffffff&guid=ON&async=1&gtm=45be4ah0v9168882605za200&gcd=13l3l3l3l1l1&dma=0&tag_exp=101686685~101794737~101823847&u_w=1280&u_h=1024&url=https%3A%2F%2Fcheckout.eventcreate.com%2F11-7-24-raleigh-11th-hou-614158%2Fregister-details%3Foid%3D384e8ae7-a9d0-486d-91dd-3f11895a5308&ref=https%3A%2F%2Fwww.eventcreate.com%2F&hn=www.googleadservices.com&frm=0&tiba=11%2F6%2F24-Raleigh-%2011th%20Hour%20Credit%20Hours%20%7C%20Registration%20closed&npa=0&pscdl=noapi&auid=1390798826.1729716499&uaa=x86&uab=64&uafvl=Google%2520Chrome%3B117.0.5938.132%7CNot%253BA%253DBrand%3B8.0.0.0%7CChromium%3B117.0.5938.132&uamb=0&uam=&uap=Windows&uapv=10.0.0&uaw=0&fledge=1&data=event%3Dgtag.config
Preview:	<html><head><meta http-equiv="origin-trial" content="Avh5Ny0XEFCyQ7+oNieXskUrqY8edUzL5/XrwKlGjARQHW4TFRK+jVd5HnDIpY20n5OLHfgU4ku7x48N3uhG/A0AAABxeyJvcmlnaW4iOiJodHRwczovL2RvdWJsZWNsaWNrLm5ldDo0NDMiLCJmZWF0dXJlIjoiUHJpdmFjeVNhbmRib3hBZHNBUElzIiwiZXhwaXJ5IjoxNjk1MTY3OTk5LCJpc1N1YmRvbWFpbiI6dHJ1ZX0="></head><body><script>var ig_list={"interestGroups":[{"action":0,"expirationTimeInSeconds":2592000,"interestGroupAttributes":{"owner":"https://td.doubleclick.net","name":"4s1390798826.1729716499","biddingLogicUrl":"https://td.doubleclick.net/td/bjs","dailyUpdateUrl":"https://td.doubleclick.net/td/update?ig_name=4s1390798826.1729716499\u0026ig_key=1sNHMxMzkwNzk4ODI2LjE3Mjk3MTY0OTk!2sZ0DuXA!3sAAptDV5rOHlH\u0026tag_eid=44805651","trustedBiddingSignalsUrl":"https://td.doubleclick.net/td/bts","trustedBiddingSignalsKeys":["1sC77vCg!2sZ0DuXA!3sAAptDV5rOHlH"],"userBiddingSignals":[["597845763","541711576","844744926"],null,1729716572545351],"ads":[{"renderUrl":"https://tdsf.doubleclick.net/td/adfetch/

Chrome Cache Entry: 212

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text
Category:	downloaded
Size (bytes):	2680
Entropy (8bit):	4.944771186457113
Encrypted:	false
SSDEEP:
MD5:	DAF2781A942D829CC47611049438EF53
SHA1:	8342E98F76FA416AC80DD476C7102AE159E23086
SHA-256:	FDA6E70385CC0E8F5F8E6B2BDCA23C7DBF47130571DA5CC597AF24122AD0E1CB
SHA-512:	2487F163443240C0EBFAC1C8D99C6D8EA51E5620F2E7836A7FE4DE02EC731A6C0129B61B1C57668C18A738C8EBEBA882D4FA2B029335F03781BB0610B313ADC4
Malicious:	false
Reputation:	unknown
URL:	https://checkout.eventcreate.com/assets/vendor/editor/plugins/code_view-34e76924ed11fe182a0df0e9f6f87c6d87047b100110ecb23f80f9ed306f1ac4.css
Preview:	/!. froala_editor v2.3.4 (https://www.froala.com/wysiwyg-editor). * License https://froala.com/wysiwyg-editor/terms/. * Copyright 2014-2016 Froala Labs. */...clearfix::after {. clear: both;. display: block;. content: "";.}.textarea.fr-code {. display: none;. width: 100%;. resize: none;. -moz-resize: none;. -webkit-resize: none;. -webkit-box-sizing: border-box;. -moz-box-sizing: border-box;. box-sizing: border-box;. border: none;. padding: 10px;. margin: 0px;. font-family: "Courier New", monospace;. font-size: 14px;. background: #ffffff;. color: #000000;. outline: none;.}..fr-box.fr-rtl textarea.fr-code {. direction: rtl;.}..fr-box .CodeMirror {. display: none;.}..fr-box.fr-code-view textarea.fr-code {. display: block;. min-height: 150px;.}..fr-box.fr-code-view.fr-inline {. -webkit-box-shadow: 0 1px 3px rgba(0, 0, 0, 0.12), 0 1px 2px rgba(0, 0, 0, 0.24);. -moz-box-shadow: 0 1px 3px rgba(0, 0, 0, 0.12), 0 1px 2px rgba(0, 0, 0, 0.24);. box-shadow: 0 1px 3px rg

Chrome Cache Entry: 213

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	Unicode text, UTF-8 text, with very long lines (51384), with no line terminators
Category:	dropped
Size (bytes):	51385
Entropy (8bit):	5.293328685395304
Encrypted:	false
SSDEEP:
MD5:	6626C1362840EBFC8F48294E8F023E18
SHA1:	4EC0DFB37C3E536C1B5EC04B68C9846FDBAF9EEF
SHA-256:	AABC88A6DB8B22022F96CA88E4F0A7BE426ABEF2B35169A71515A2D55246402A
SHA-512:	B037A19B52C1047198EC7F19E99066054E454964380E2354239834260D11248E617D6759B944DDF39A25B883C8F430603D8E13097396E2DEDA9BB6905C1CD42A
Malicious:	false
Reputation:	unknown
Preview:	function UET(o){this.stringExists=function(n){return n&&n.length>0};this.domain="bat.bing.com";this.domainCl="bat.bing.net";this.URLLENGTHLIMIT=4096;this.pageLoadEvt="pageLoad";this.customEvt="custom";this.pageViewEvt="page_view";o.Ver=o.Ver!==undefined&&(o.Ver==="1"\|\|o.Ver===1)?1:2;this.uetConfig={};this.uetConfig.consent={enabled:!1,adStorageAllowed:!0,adStorageUpdated:!1,hasWaited:!1,waitForUpdate:0,enforced:!1};this.uetConfig.tcf={enabled:!1,vendorId:1126,hasLoaded:!1,timeoutId:null,gdprApplies:undefined,adStorageAllowed:undefined,measurementAllowed:undefined,personalizationAllowed:undefined};this.uetConfig.cusig={hasLoaded:!1,timeoutId:null,blob:{}};this.beaconParams={};this.supportsCORS=this.supportsXDR=!1;this.paramValidations={string_currency:{type:"regex",regex:/^[a-zA-Z]{3}$/,error:"{p} value must be ISO standard currency code"},number:{type:"num",digits:3,max:999999999999},integer:{type:"num",digits:0,max:999999999999},hct_los:{type:"num",digits:0,max:30},date:{type:"regex",

Chrome Cache Entry: 214

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	Web Open Font Format (Version 2), TrueType, length 19780, version 1.0
Category:	downloaded
Size (bytes):	19780
Entropy (8bit):	7.9891130697839055
Encrypted:	false
SSDEEP:
MD5:	608471849F9473ADB650B0BDAD1F52CC
SHA1:	9ABF0BE47629F6F8BE140847242B37E647BF60AA
SHA-256:	0E100B86870EC5CAAA887E0FE743B177D57E02242812A0CD4675781DFFFEA440
SHA-512:	C44D2DE9CD2C98171A720FBB03258A3DA87555A2DD1860D30DC83B7CF4DFAB46E54D97C2FA83905F80A8B710F5252DDC6F91297B44FD6CF7498BF7013DFE3465
Malicious:	false
Reputation:	unknown
URL:	https://fonts.gstatic.com/s/roboto/v32/KFOjCnqEu92Fr1Mu51TzBic6CsQ.woff2
Preview:	wOF2......MD.......h..L.................................\|.`..J.J..<.....\..Q..Z...x.6.$..0. ..&. ....J.%.]...p.{>....o......gGXp. E.N...)I....1...,A...P..1...9....F...%'Nz+........d..JG....v........o".......1..........c.!........M....r..O...<...}.=....c.C.Xu..y.........$......'..T..3.....U.Fm.DIJ..d-....L%R.M.....X....+...k..!X.q....c.......f...K+]N.....s.w.`2 ...%4! <.:..@........y..0....J.:!.uQH..d....j..l.....%...iR...N).._P=j5..VL.G.HW8;...'..4r...pRv...pH$.B2.tw.g..f.M!....;wx.?E.=.S. .>..M!.&@...K.v.u].!..}kVu.ph.,.d....Q.=a..ZQ._..'...................i....~.G..$..5.....=..B.._..-......Z..{f"<tk....O...`i.~..e&x...u. ..p.+..._U.}........cI;w..E..zS..-....B...t.....K...t..II...T:l...~..M.EWm.<<]&..Ck.G..)......6.[.b<....2g.6...J............+.K(..mCk..C.x..Ji...........j..+..w....y..^...;.ISVr.S.i.u.J.E"98....7........n&i.........x.....`..'.o~~....f.!H.......J.l.r...mH....k.u.8.`...c...m`.rp....s.fK..B.*0L.y..^...M$.8..A...Ps.r......j

Chrome Cache Entry: 216

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	Web Open Font Format (Version 2), TrueType, length 31052, version 1.0
Category:	downloaded
Size (bytes):	31052
Entropy (8bit):	7.994212302026679
Encrypted:	true
SSDEEP:
MD5:	5C4F357D4926FC197D43ABC63B7FCA8C
SHA1:	686AF7000D038D7479ED36B48A8EBB0EA9B98AEA
SHA-256:	1393ACC632C160DEF86B45C2521C8EE742B7E6239D0D90FB95F51D55CF48B9C3
SHA-512:	9F760F0C8C7FE583BBCB8270ABF62C826D33FA6DCEAF820533B64B56742284EC9B750066DAAF9E4D3C0305373D1DB8BD2AD47BBB88573610F0BE2A617E183DD6
Malicious:	false
Reputation:	unknown
URL:	https://fonts.gstatic.com/s/nunitosans/v15/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-s.woff2
Preview:	wOF2......yL.......@..x...........................u...v...?HVAR.$?MVARb.`?STAT.z'2..2/d.....0.}..N.0..>.6.$.... ...../...I.5l...[..0....q..=7v0..U..@......X..OI.?d,>...nK...I#.".J+...3..kF.s.....>U.s..C..W.U.C..%`e....Y.a..5.{.1...z.......)8....K...p0..Zh.r..J...). .. .......G...]..-^T.z3.....s_Df...Ru....k.+r%2.......[.%.F.Z..?.4....h......P.....%..j.....Y...1.4i.Z.5/.....<...Jw....h:....5.J-.K.&..rqo...SK...2>..0s.l........g........_e..m...D..'...~.q.w.)C,A...A.@....{....4J.#.k.c....G.?.n.=...E......W..]].e..(...[.~...EI.VX....<Hx2`[z...I..z}@)..............,rD.......2.......z.R..t.$;.$.'....<nV.\|....~&A.!...Q...+&...M]........W.0-.<........Ig.+..g..=.....".+..8.d.d..-...O...d<.W/.H$R.D"...\|.....L...).9{./...c(0....oj..xx.^^.nN..........R....c..-.....FK..\|...',.\|..T.N......2...i.,....s..t.*.Z......u..>.e..<....!s..~U....@.$.04..T.j.fL..wA.(6A.l......^."..BI$.....(l..M.l..D'_...f...HA.Qv.6~k.....y....V.#:....{.H:...+...t..d..X.Ty).p..m.../..

Chrome Cache Entry: 219

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	HTML document, ASCII text, with very long lines (32087)
Category:	downloaded
Size (bytes):	225748
Entropy (8bit):	5.421772962302821
Encrypted:	false
SSDEEP:
MD5:	030F642099F818CF3B4F5AFDF7A6A05D
SHA1:	B094B89B2ACD40D70BB7FE7F943DF776D4958767
SHA-256:	4E7B7FFDECB7ABB1079BD0461FE4E4E86FA75D29BAE6CB84C23AF799F0740326
SHA-512:	1C9C6B0FCF2DFE8A067D00CCD036308B12497CA7828B5737DCC907614335233F8B55DF77D319EF0B46770BEF4D8C56B31C880893E21D6DF299860520E5691260
Malicious:	false
Reputation:	unknown
URL:	https://cdn-4.convertexperiments.com/js/10041543-10041732.js
Preview:	if(typeof(window['convert'])=='undefined' \|\| typeof(window['convert']['doUseBackupData'])=='undefined') {.window['convertData']={"device":{"mobile":false,"tablet":false,"desktop":true},"geo":{"country":"US","city":"DALLAS","continent":"NA","state":"TX"},"generatedAt":"2024-10-23T20:48:14.250Z"};.var convert_temp = convert_temp \|\| {}; convert_temp.data = {"u_id":"10041543","prj":{"utc_of":"0","extset":{"d_anon":true,"autlnk":false,"gdprw":true,"dnt":"1","maxordv":99999,"minvis":5,"minconv":5,"stopTrackingGoalsAfterDays":30,"srm_check":false,"smart_recommendations":true,"stats_engine_processing":{"stats_type":"frequentist","power":80,"test_type":"one_tail","multiple_comparison_correction":"sidak","power_calculation_type":"none","fixed_mde":1,"decision_threshold":95},"mindays":999,"csmb":"$","version":"2024-10-21T13:25:18+00:00-2","gaUA":[],"minordv":0,"cname":null},"custom_domain":null,"id":"10041732","name":"Project #10041732","global_d":null,"domains":{"eventcreate.com":["eventcreate.c

Chrome Cache Entry: 220

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text
Category:	downloaded
Size (bytes):	4631
Entropy (8bit):	4.868900594292529
Encrypted:	false
SSDEEP:
MD5:	AC4A9B0E72550C24E4DFA0A2221ECFC7
SHA1:	176D9AD5147582C20CEA414FACCD1BC3F8A5ACB0
SHA-256:	9019AB7E2E6184516DA83B9BFF797DA9348EBE76846BCB295D874954A7854892
SHA-512:	CF92A3474B5C446CF4DF53C7BF55BC7C4BFEAF2C885913A7B472EB9E33E1299A07C6A2AA764A8BC3715D255B915A6AA63DBB8D5C8EFDFE3D5078579432BC6E51
Malicious:	false
Reputation:	unknown
URL:	https://checkout.eventcreate.com/assets/vendor/editor/plugins/image-bf9fdfbcf97b5838cd466373b87b089a2bba74f98aa08c638c9c23b6eac75fe3.css
Preview:	/!. froala_editor v2.3.4 (https://www.froala.com/wysiwyg-editor). * License https://froala.com/wysiwyg-editor/terms/. * Copyright 2014-2016 Froala Labs. */...clearfix::after {. clear: both;. display: block;. content: "";.}..fr-element img {. cursor: pointer;.}..fr-image-resizer {. position: absolute;. border: solid 1px #1e88e5;. display: none;. user-select: none;. -o-user-select: none;. -moz-user-select: none;. -khtml-user-select: none;. -webkit-user-select: none;. -ms-user-select: none;. -webkit-box-sizing: content-box;. -moz-box-sizing: content-box;. box-sizing: content-box;.}..fr-image-resizer.fr-active {. display: block;.}..fr-image-resizer .fr-handler {. display: block;. position: absolute;. background: #1e88e5;. border: solid 1px #ffffff;. z-index: 4;. -webkit-box-sizing: border-box;. -moz-box-sizing: border-box;. box-sizing: border-box;.}..fr-image-resizer .fr-handler.fr-hnw {. cursor: nw-resize;.}..fr-image-resizer .fr-handler.fr-hne {. cursor: ne-

Chrome Cache Entry: 224

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Category:	downloaded
Size (bytes):	48236
Entropy (8bit):	7.994912604882335
Encrypted:	true
SSDEEP:
MD5:	015C126A3520C9A8F6A27979D0266E96
SHA1:	2ACF956561D44434A6D84204670CF849D3215D5F
SHA-256:	3C4D6A1421C7DDB7E404521FE8C4CD5BE5AF446D7689CD880BE26612EAAD3CFA
SHA-512:	02A20F2788BB1C3B2C7D3142C664CDEC306B6BA5366E57E33C008EDB3EB78638B98DC03CDF932A9DC440DED7827956F99117E7A3A4D55ACADD29B006032D9C5C
Malicious:	false
Reputation:	unknown
URL:	https://fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
Preview:	wOF2.......l......D...............................O..B..h?HVAR.x.`?STAT.$'...0+...\|.../V........+..2.0..6.6.$..`. ..~......[B4q.....t..P.M_.z...1..R.S...u.#..R....fR.1.N.v.N.P...;.2........!Z......Qs...5f.G.K.an2&....2.........C.H.t..N!.....nh.<(.vN.....j.._.L.P.t..Ai.%.............._I.i,..o,C.].H.X9.....a.=N....k.....n.L..k.f.u..{...:.}^\[..~5...Z`...........`!...%4..,...K0..&.a/....P....S....m.Z......u...D.j.F...f.0`I.`.`.h#..)(FQ.F!o$........S.).MV8%Rh...r...x...T]$.=......Y...!.3.&U..."....Q....{.l/0..d..4iJ/..}...3....i[Z..NG.WD...>.[U..Q.h..@m.=..S...1C2...d...<..v.?.q.f..n...OUz.....&Z......Z."..N.....n...9.B..C..W....}...W..6Zs.i.+Z........jB.n..x.8M.....q..@I....-.%..,C,..K..#.2...4)/.v_..x.<....t.....%[.4?.=j.V..jj''..W.u..q....I.L.=......E...\.M.7{.>......W........C.`...,9$......\..o........y...4A..m.P.,X..=?.:................wF`..+.P..........M!.4.......l.>M..t.ff5r..^..Z.g...!fA,hIIQ...e.R>B.AH.VuX..>..\.=.ky...1>C....>C.c.;...6D.

Chrome Cache Entry: 227

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with CRLF line terminators
Category:	dropped
Size (bytes):	370
Entropy (8bit):	4.5969897580127865
Encrypted:	false
SSDEEP:
MD5:	9C2160161305054AF467EA797A7C408F
SHA1:	8B427BC141874CC164E2BE3DB02079FCC99AF9ED
SHA-256:	7F47F02C93D5DE5DE03DB0EBFFA39FE1060767437B086996E295C9818A05B2F2
SHA-512:	FCCC6474CC18139B34DC40F6009C358753658E34CC2DF5B7D2C4E253BFE9647957A2FD23F30C86EC2087C2B250BCB0C570BB9EEF54B10DF6C4A3A6659F56F228
Malicious:	false
Reputation:	unknown
Preview:	(function(w,d,c,k,a,b,t,e) {.. var cs = d.currentScript;.. if (cs) {.. var uo = cs.getAttribute('data-ueto');.. if (uo && w[uo] && typeof w[uo].setUserSignals === 'function') {.. w[uo].setUserSignals({'co': c, 'kc': k, 'at': a, 'bi': b, 'dt': t, 'ec': e});.. }.. }..})(window, document, 'us', true, false, false, false, false);..

Chrome Cache Entry: 228

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (8136), with no line terminators
Category:	dropped
Size (bytes):	8136
Entropy (8bit):	5.764730357255283
Encrypted:	false
SSDEEP:
MD5:	2EE33B882483AA92B93B220AA338FE92
SHA1:	AF9FC86E3ECF486561CC35CBA7F0DC4C202DDD9C
SHA-256:	A5943502A1D7613E7B0752768E03388783B6DDEB536A7491B2284E5AF8A8CB3A
SHA-512:	939B8DA99DAE2796F8A74CD1FA1176A528BDFD99B8A6E45FC0E0598740C677FA735B4EFDD3A1919B84B5F4D80C7C19CAB9A8B2772DEFC86AEAB6C044603C1E98
Malicious:	false
Reputation:	unknown
Preview:	window._cf_chl_opt={cFPWv:'g'};~function(V,h,i,j,k,o,s,x){V=b,function(d,e,U,f,g){for(U=b,f=d();!![];)try{if(g=-parseInt(U(446))/1(-parseInt(U(462))/2)+parseInt(U(470))/3+-parseInt(U(453))/4+-parseInt(U(513))/5(parseInt(U(490))/6)+parseInt(U(469))/7(-parseInt(U(517))/8)+-parseInt(U(443))/9+-parseInt(U(496))/10(-parseInt(U(473))/11),e===g)break;else f.push(f.shift())}catch(D){f.push(f.shift())}}(a,629492),h=this\|\|self,i=h[V(463)],j={},j[V(505)]='o',j[V(425)]='s',j[V(474)]='u',j[V(511)]='z',j[V(521)]='n',j[V(418)]='I',j[V(429)]='b',k=j,h[V(516)]=function(g,D,E,F,a0,H,I,J,K,L,M){if(a0=V,D===null\|\|D===void 0)return F;for(H=n(D),g[a0(478)][a0(434)]&&(H=H[a0(439)](g[a0(478)][a0(434)](D))),H=g[a0(480)][a0(500)]&&g[a0(493)]?g[a0(480)][a0(500)](new g[(a0(493))](H)):function(N,a1,O){for(a1=a0,N[a1(444)](),O=0;O<N[a1(447)];N[O]===N[O+1]?N[a1(419)](O+1,1):O+=1);return N}(H),I='nAsAaAb'.split('A'),I=I[a0(499)][a0(498)](I),J=0;J<H[a0(447)];K=H[J],L=m(g,D,K),I(L)?(M='s'===L&&!g[a0(477)](D[K]),a0(

Chrome Cache Entry: 229

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	PNG image data, 1000 x 250, 8-bit/color RGBA, non-interlaced
Category:	dropped
Size (bytes):	151634
Entropy (8bit):	7.991006101987575
Encrypted:	true
SSDEEP:
MD5:	E711BED31B5066F6FF2F8A2403ECD511
SHA1:	F0C7C63E223744123654CC3CFE6B16DCA861727B
SHA-256:	19E4EBDC42072FB2CFABD6FCDF3A6B49DA8821F809DE1BA1BF55F15976D40F40
SHA-512:	1B2119DB0129A36ABF3147C02A7F30CF1F200A71FC5578BEA3340734FADED29EADE85329CAA7ACCF3B41AF3AB90D131C7B70B3F19BBD2B987735BC650F2C014A
Malicious:	false
Reputation:	unknown
Preview:	.PNG........IHDR.............2Um.....pHYs..........+......iTXtXML:com.adobe.xmp.....<x:xmpmeta xmlns:x='adobe:ns:meta/'>. <rdf:RDF xmlns:rdf='http://www.w3.org/1999/02/22-rdf-syntax-ns#'>.. <rdf:Description rdf:about=''. xmlns:dc='http://purl.org/dc/elements/1.1/'>. <dc:title>. <rdf:Alt>. <rdf:li xml:lang='x-default'>11th Hour Banner - 1</rdf:li>. </rdf:Alt>. </dc:title>. </rdf:Description>.. <rdf:Description rdf:about=''. xmlns:Attrib='http://ns.attribution.com/ads/1.0/'>. <Attrib:Ads>. <rdf:Seq>. <rdf:li rdf:parseType='Resource'>. <Attrib:Created>2024-09-26</Attrib:Created>. <Attrib:ExtId>695a0455-aefc-422b-bd1c-079ed81945b2</Attrib:ExtId>. <Attrib:FbId>525265914179580</Attrib:FbId>. <Attrib:TouchType>2</Attrib:TouchType>. </rdf:li>. </rdf:Seq>. </Attrib:Ads>. </rdf:Description>.. <rdf:Description rdf:about=''. xmlns:p

Chrome Cache Entry: 230

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (10635)
Category:	dropped
Size (bytes):	240458
Entropy (8bit):	5.643977207496207
Encrypted:	false
SSDEEP:
MD5:	B9E2542ED0E6EF22E156B3FA16FC6562
SHA1:	35BD3350B6183A300A3E8389BC8C5BFB83DB6C08
SHA-256:	A1F338D45D9183E44A2B28A55EB95C4BF1ABFC886E52553FFC92508E8102CCE7
SHA-512:	D9A5DB7B08383D28686B5E12BB77017A4FEE3A0B191D6331667DA9C2EC4FD77351A24C29641FB386ACEFB91069CA65A05BC3D4681C6DF9F7E0398DCB80BEE61D
Malicious:	false
Reputation:	unknown
Preview:	..window.google = window.google \|\| {};.google.maps = google.maps \|\| {};.(function() {. . var modules = google.maps.modules = {};. google.maps.__gjsload__ = function(name, text) {. modules[name] = text;. };. . google.maps.Load = function(apiLoad) {. delete google.maps.Load;. apiLoad([0.009999999776482582,[null,[["https://khms0.googleapis.com/kh?v=989\u0026hl=en-US\u0026","https://khms1.googleapis.com/kh?v=989\u0026hl=en-US\u0026"],null,null,null,1,"989",["https://khms0.google.com/kh?v=989\u0026hl=en-US\u0026","https://khms1.google.com/kh?v=989\u0026hl=en-US\u0026"]],null,null,null,null,[["https://cbks0.googleapis.com/cbk?","https://cbks1.googleapis.com/cbk?"]],[["https://khms0.googleapis.com/kh?v=163\u0026hl=en-US\u0026","https://khms1.googleapis.com/kh?v=163\u0026hl=en-US\u0026"],null,null,null,null,"163",["https://khms0.google.com/kh?v=163\u0026hl=en-US\u0026","https://khms1.google.com/kh?v=163\u0026hl=en-US\u0026"]],null,null,null,null,null,null,null,[["https://streetv

Chrome Cache Entry: 231

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (554)
Category:	dropped
Size (bytes):	194449
Entropy (8bit):	5.631178033848175
Encrypted:	false
SSDEEP:
MD5:	D24159D6B6EFFD13D0C781CBB950D73C
SHA1:	25204616AD3B9E787ED1C62CACC935AA79E5BF45
SHA-256:	FAF393CFCF0DD3586BC5B4D4DAF75755215C8F8642FD117A184D44328E056A00
SHA-512:	22B5682CAD051B71B12BF006004521BB9A860273B25B2E966FB65369BFCABA826574E7F91F0587E5742862C069755DCE8F66DD90EB14FC7FB29F293188E818FF
Malicious:	false
Reputation:	unknown
Preview:	google.maps.__gjsload__('util', function(_){/.. Copyright 2024 Google, Inc. SPDX-License-Identifier: MIT./.var Xwa,Ywa,$wa,bxa,TB,cxa,dxa,fxa,VB,XB,gxa,YB,ZB,hxa,bC,jxa,fC,hC,iC,jC,kC,lC,nC,kxa,pC,lxa,sC,uC,vC,wC,nxa,oxa,xC,pxa,AC,DC,EC,qxa,HC,txa,IC,KC,LC,vxa,wxa,xxa,zxa,RC,Bxa,SC,Dxa,TC,Fxa,Exa,Gxa,Hxa,Ixa,Jxa,Kxa,Lxa,Mxa,Nxa,Oxa,Pxa,Qxa,Rxa,Sxa,Txa,Uxa,Vxa,Wxa,Xxa,Yxa,XC,aya,ZC,bya,cya,dya,eya,fya,gya,hya,iya,jya,kya,lya,nya,pya,rya,tya,vya,xya,zya,Bya,Dya,Fya,Gya,Hya,Iya,Jya,Kya,Lya,Mya,$C,Nya,Oya,Pya,Qya,Rya,Sya,Uya,bD,cD,Vya,Wya,Xya,Yya,Zya,$ya,aza,bza,cza,dza,eza,dD,fza,eD,gza,hza,iza,jza,kza,lza,.mza,fD,nza,gD,oza,pza,qza,rza,sza,tza,uza,vza,wza,xza,yza,zza,Aza,Bza,Cza,Dza,Eza,Fza,Gza,Iza,Jza,Kza,Mza,iD,Nza,Oza,Pza,Qza,Rza,Sza,Wza,Xza,Zza,bAa,cAa,dAa,tD,eAa,uD,fAa,vD,gAa,hAa,ED,FD,jAa,HD,ID,JD,lAa,mAa,nAa,MD,ND,PD,QD,oAa,RD,TD,pAa,rAa,sAa,yAa,zAa,ZD,DAa,HAa,IAa,JAa,bE,KAa,MAa,NAa,OAa,PAa,eE,RAa,XAa,pE,$Aa,ZAa,qE,aBa,sE,cBa,dBa,eBa,gBa,hBa,QE,jBa,RE,kBa,lBa,mBa,nBa,TE,pBa,oBa,

Chrome Cache Entry: 233

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	Web Open Font Format (Version 2), TrueType, length 20144, version 1.0
Category:	downloaded
Size (bytes):	20144
Entropy (8bit):	7.988855976137295
Encrypted:	false
SSDEEP:
MD5:	214F75E42AA5CFCA07257CBF8C64E83C
SHA1:	BA4BBE71D4AB266BC145305217CDF86A7777137F
SHA-256:	A6760631FECFE59ED152AEB2C51FDCB515AC00CD4755449016B5B34813735D00
SHA-512:	E8D896C8C3509941FBCE96E2847838A520B3BC8D94348B1121840A1A2A45328BE939238423A03CDFB7823CF128EEC3190DE8B4C1924553D603EF02FA856217E0
Malicious:	false
Reputation:	unknown
URL:	https://fonts.gstatic.com/s/roboto/v32/KFOkCnqEu92Fr1Mu51xIIzI.woff2
Preview:	wOF2......N........p..NI.............................Z..\|.`..J.R..<.....$..}..Z...x.6.$..0. .... ..D.6..r.L......r.....y.B....(j''.L..)A.1.k...DEHA.O,...@..C;..SE.g.ch.{.t..F...?zW....\|.r.p..dO1..-.).Q.9.Z......?v..>......).9@."..\}.(.[....I.u......mc...`...#.[.Q!.%B.("!......``c....._....:.u&~......&'.I.x.>..R.......@.4...]\|f9V.u.4v.+...E.~=..{+.....]..&X...L...Z..>O.WH...Z..!.T..:..G..1....2.HR....1...U..N....}.D^.:`E.P.:._~....-Qv.....> .t;..[...B.pE.(T.W1...t.........m.....X..F...]i....$.]..e.VSt.NNo......}.=#.B.0.gds....h...ns.Tv..$<_....2F.Kd.;..\.F......B.p)\|.%.<[..YJ..l..CP....F..x{...}...f.&..Ci......;...V............./....w...+.I.B.Y...r.........Q...........X.-cL.g3)...a. ..D..w./x.V...Z.`N.25/..)M&...ys../.{E.ezR:V..2V5.+....;....._.[$J.r....A0tW.u....L........&T....~.z........10...3%.`%..urP i.9...M.i4M....L...q...N.........%...w.......?7>.........5.!..\|8..."N...Y.....E...M\|..._N..v{].._..Ex..J.7....aJ;...#u..W...Sk.9...Vn.]......D..

Chrome Cache Entry: 234

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text
Category:	downloaded
Size (bytes):	656
Entropy (8bit):	5.091061328689502
Encrypted:	false
SSDEEP:
MD5:	127D94E6B61E611E0BDBFA15FD9B626F
SHA1:	B3E6826320184E7F2CA6690CF27D0BDFC430C782
SHA-256:	91116DBF2F65E1CBBC3DA1405624325BBB0D227C9B26819D28D09C9CB84469B5
SHA-512:	01CB626EDC6FC68F0D966BD615D067422BBA04812F8A7C2CEF0098ED53DD3F032485EA168D560935C622777602E192F8958D5EB099DD92DB9F0E7C15827A14BF
Malicious:	false
Reputation:	unknown
URL:	https://www.eventcreate.com/assets/vendor/editor/plugins/emoticons-f39112dd706dc39468e6d06db21628897e9f02ddef7aa43dfa0ca65b1d674483.css
Preview:	/!. froala_editor v2.3.4 (https://www.froala.com/wysiwyg-editor). * License https://froala.com/wysiwyg-editor/terms/. * Copyright 2014-2016 Froala Labs. */...clearfix::after {. clear: both;. display: block;. content: "";.}..fr-popup .fr-emoticon {. display: inline-block;. font-size: 20px;. width: 20px;. padding: 5px;. line-height: 1;. cursor: default;. font-weight: normal;. font-family: "Apple Color Emoji", "Segoe UI Emoji", "NotoColorEmoji", "Segoe UI Symbol", "Android Emoji", "EmojiSymbols";. -webkit-box-sizing: content-box;. -moz-box-sizing: content-box;. box-sizing: content-box;.}..fr-popup .fr-emoticon img {. height: 20px;.}.

Chrome Cache Entry: 237

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (9217)
Category:	dropped
Size (bytes):	233291
Entropy (8bit):	5.456901962809629
Encrypted:	false
SSDEEP:
MD5:	FBEF9D532FD9ECE8A6942FDF4B39C4B5
SHA1:	600B039F87875CA4C84AEA11B436CA1B5CF136BE
SHA-256:	B3CAD51CA0CFDBEAC9D38F7AAD54E6564408F0DA56A6FD56350E0D03D4F0AEF9
SHA-512:	A415EA85A12C4330E98F8E37E82D6CC1C03356970F793ECC9ED66E67A9FF7193BC8E3AAF15CD347998FDDC6D05A03CD57240FFF404FCA59B5A8F4F6071A3539F
Malicious:	false
Reputation:	unknown
Preview:	/*. Copyright (c) 2017-present, Facebook, Inc. All rights reserved... You are hereby granted a non-exclusive, worldwide, royalty-free license to use,.* copy, modify, and distribute this software in source code or binary form for use.* in connection with the web services and APIs provided by Facebook... As with any software that integrates with the Facebook platform, your use of.* this software is subject to the Facebook Platform Policy.* [http://developers.facebook.com/policy/]. This copyright notice shall be.* included in all copies or substantial portions of the software... THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR.* IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS.* FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR.* COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER.* IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN.* CONNECTION WI

Chrome Cache Entry: 238

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (1572)
Category:	downloaded
Size (bytes):	39154
Entropy (8bit):	5.510157503297799
Encrypted:	false
SSDEEP:
MD5:	C9BFB1C4054ED081C17962D6561A8BA2
SHA1:	65DF1B9C48239AB9D7144868060F1B12E7C68934
SHA-256:	8DB8DEFBFC2B44EA006F99C41502A6C4D3268E7BBA40B58E07DAEEC30849475D
SHA-512:	E80BBF9A43EC3E94D00C3556199670407C31D4227010A58EC0715B03558321FB384614BBA24D8BD8AF6B6BA911CD590E4E89DDA322B37EE4342BDE9FFB4A6B0B
Malicious:	false
Reputation:	unknown
URL:	"https://fonts.googleapis.com/css?family=Arimo:400,400i,700,700i%7CRoboto:400,400i,700,700i%7CNunito+Sans:400,400i,700,700i%7COpen+Sans:400,700"
Preview:	/* cyrillic-ext /.@font-face {. font-family: 'Arimo';. font-style: italic;. font-weight: 400;. src: url(https://fonts.gstatic.com/s/arimo/v29/P5sCzZCDf9_T_10c9C5kiK-u.woff2) format('woff2');. unicode-range: U+0460-052F, U+1C80-1C8A, U+20B4, U+2DE0-2DFF, U+A640-A69F, U+FE2E-FE2F;.}./ cyrillic /.@font-face {. font-family: 'Arimo';. font-style: italic;. font-weight: 400;. src: url(https://fonts.gstatic.com/s/arimo/v29/P5sCzZCDf9_T_10c9CdkiK-u.woff2) format('woff2');. unicode-range: U+0301, U+0400-045F, U+0490-0491, U+04B0-04B1, U+2116;.}./ greek-ext /.@font-face {. font-family: 'Arimo';. font-style: italic;. font-weight: 400;. src: url(https://fonts.gstatic.com/s/arimo/v29/P5sCzZCDf9_T_10c9C9kiK-u.woff2) format('woff2');. unicode-range: U+1F00-1FFF;.}./ greek */.@font-face {. font-family: 'Arimo';. font-style: italic;. font-weight: 400;. src: url(https://fonts.gstatic.com/s/arimo/v29/P5sCzZCDf9_T_10c9CBkiK-u.woff2) format('woff2');. unicode-range: U+0370-0377, U+

Chrome Cache Entry: 239

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text
Category:	downloaded
Size (bytes):	2698
Entropy (8bit):	4.877848118254339
Encrypted:	false
SSDEEP:
MD5:	B5C92097BE9BFBECFAAEB853F8AE41F6
SHA1:	62637706E1494B3B36E41B5C951C48067ABD4479
SHA-256:	964FD3DB364BBBC4517BEF41DBD70000D521D219D249D23E60AAE36085E8384D
SHA-512:	7E8FF014D53E8F4C79BF479FB9DB306A91371EC0EE49BD0DADE6F9D35CF9762E267032DE207903CF8CC291C74A8247AD4113E0AE934DF4EA9B6FBE04BF7F68B9
Malicious:	false
Reputation:	unknown
URL:	https://checkout.eventcreate.com/assets/vendor/editor/plugins/file-137359383ea1affec6591077d2c9a6d44224c1620fad82720bd2eb63c7d8aad9.css
Preview:	/!. froala_editor v2.3.4 (https://www.froala.com/wysiwyg-editor). * License https://froala.com/wysiwyg-editor/terms/. * Copyright 2014-2016 Froala Labs. */...clearfix::after {. clear: both;. display: block;. content: "";.}..fr-file-upload-layer {. border: dashed 2px #bdbdbd;. padding: 25px 0;. position: relative;. font-size: 14px;. letter-spacing: 1px;. line-height: 140%;. -webkit-box-sizing: border-box;. -moz-box-sizing: border-box;. box-sizing: border-box;. text-align: center;.}..fr-file-upload-layer:hover {. background: #ebebeb;.}..fr-file-upload-layer.fr-drop {. background: #ebebeb;. border-color: #1e88e5;.}..fr-file-upload-layer .fr-form {. -webkit-opacity: 0;. -moz-opacity: 0;. opacity: 0;. -ms-filter: "progid:DXImageTransform.Microsoft.Alpha(Opacity=0)";. position: absolute;. top: 0;. bottom: 0;. left: 0;. right: 0;. z-index: 9999;. overflow: hidden;. margin: 0 !important;. padding: 0 !important;. width: 100% !important;.}..fr-file-upload-layer .

Chrome Cache Entry: 241

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	Web Open Font Format (Version 2), TrueType, length 18596, version 1.0
Category:	downloaded
Size (bytes):	18596
Entropy (8bit):	7.988788312296589
Encrypted:	false
SSDEEP:
MD5:	C83E4437A53D7F849F9D32DF3D6B68F3
SHA1:	FABEA5AD92ED3E2431659B02E7624DF30D0C6BBC
SHA-256:	D9BADA3A44BB2FFA66DEC5CC781CAFC9EF17ED876CD9B0C5F7EF18228B63CEBB
SHA-512:	C2CA1630F7229DD2DEC37E0722F769DD94FD115EEFA8EEBA40F9BB09E4FDAB7CC7D15F3DEEA23F50911FEAE22BAE96341A5BACA20B59C7982CAF7A91A51E152F
Malicious:	false
Reputation:	unknown
URL:	https://fonts.gstatic.com/s/roboto/v32/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
Preview:	wOF2......H...........H=................................\|.`..J.H..<........>..Z...x.6.$..0. ..~. ..)...%.m..t.D<...U.c....D....@........@e..a..R./<...p..q..q....S<.nm...X..(ER....e.....O.?Q_..FYH......ml.E..?;X0>.f.Y.,.n.a...._h8c.006U.cS..3.m.Or..I9..5.;.=..'!..c.O...W.K..f....k..&Xq..Y?.r...%.S..y.:q.......uD.d.R..'..Q,L.... e`..=?.{...e%{.....3+$.....NkF2...... ._}..2]....,.F.u.S4O.~w).G..../]}6.nVwKj.h@........5.7P....i..r........U?.........q..Cm......g...\.zu.....P..\|....5G$...4k$..L..g..".y..?..6...O...e..@..0TYh..v........M.....#B...O.i.G$.Bq..m.A.s~...A...c.....25K.....B..<..w.A....G.O...A......A,y"q....q<....N..{Ta..!.\|vzo.;9.5>.>....7I.i.Ld.4..y...].g.....'m_(...O-..}.K.(....R..2.q.z9.D..]..$.#$.:x..:{..m.OF...K[J. ......lpH.#%V....4.;l.<..J.6.T..a...I..\|..zj.k.-...y...#..e.1,s....<.HX.....z{L....'.$. "..tY..m.<.\8P. a.......x.W\.b.%...RA.\.... M.......v1......#...............`.c..%.Nc.d.qP.68....$<.O.S_7...U.].jn>@.3.c..wO..>.>a.qg....\..kb.

Chrome Cache Entry: 242

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text
Category:	downloaded
Size (bytes):	2929
Entropy (8bit):	4.97508173456914
Encrypted:	false
SSDEEP:
MD5:	51B961394CA1E6711A19A9C43616B073
SHA1:	926AA417D254C03AB9AA3A65A3E5A8C319033ED3
SHA-256:	DD5B1E443A7E241EC5D935D16EF0435C91786965BBE735E801C881DDBB267C4E
SHA-512:	290211C89EFF12681FDB31E45B9A5AFAE3EC636AE3075F306111AA1FF5856FA5D7C4CF453E2FCA59FB72A1B1D28CEA7DFAE068266DF9DF0F0C79E6B5C05D6436
Malicious:	false
Reputation:	unknown
URL:	https://www.eventcreate.com/assets/vendor/editor/plugins/colors-7efb640b07d8b199d6af44580d5b8bc422cedb8a9eba382f181e676bf9fac9ad.css
Preview:	/!. froala_editor v2.3.4 (https://www.froala.com/wysiwyg-editor). * License https://froala.com/wysiwyg-editor/terms/. * Copyright 2014-2016 Froala Labs. */...clearfix::after {. clear: both;. display: block;. content: "";.}..fr-popup .fr-colors-tabs {. -webkit-box-shadow: 0 1px 3px rgba(0, 0, 0, 0.12), 0 1px 2px rgba(0, 0, 0, 0.24);. -moz-box-shadow: 0 1px 3px rgba(0, 0, 0, 0.12), 0 1px 2px rgba(0, 0, 0, 0.24);. box-shadow: 0 1px 3px rgba(0, 0, 0, 0.12), 0 1px 2px rgba(0, 0, 0, 0.24);. margin-bottom: 5px;. line-height: 16px;. margin-left: -2px;. margin-right: -2px;.}..fr-popup .fr-colors-tabs .fr-colors-tab {. display: inline-block;. width: 50%;. cursor: pointer;. text-align: center;. color: #222222;. font-size: 13px;. padding: 8px 0;. position: relative;.}..fr-popup .fr-colors-tabs .fr-colors-tab:hover {. color: #1e88e5;.}..fr-popup .fr-colors-tabs .fr-colors-tab[data-param1="background"]::after {. position: absolute;. bottom: 0;. left: 0;. width: 100%;. heig

Chrome Cache Entry: 243

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text
Category:	downloaded
Size (bytes):	2493
Entropy (8bit):	5.340334183182171
Encrypted:	false
SSDEEP:
MD5:	24A0474C1921835A220D0E3EBC40A81C
SHA1:	922521257C5C1E50D2206E3F4C6B8DA9B095DD74
SHA-256:	6820663943186119D382972F0BE4FC28C518467FDB6E8BB1D563EBA5CD4C9B80
SHA-512:	1919D7C5B4FE4E76CE80171CE38FF7312076780C66FC25AD6F4F6097AB14E5340D8394FA95D0B9F72927CE8F6AD5EF5DB36D22DD0C206130698511C73D646651
Malicious:	false
Reputation:	unknown
URL:	https://fonts.googleapis.com/css2?family=Outfit:wght@400;500;600&display=swap
Preview:	/* latin-ext /.@font-face {. font-family: 'Outfit';. font-style: normal;. font-weight: 400;. font-display: swap;. src: url(https://fonts.gstatic.com/s/outfit/v11/QGYvz_MVcBeNP4NJuktqQ4E.woff2) format('woff2');. unicode-range: U+0100-02BA, U+02BD-02C5, U+02C7-02CC, U+02CE-02D7, U+02DD-02FF, U+0304, U+0308, U+0329, U+1D00-1DBF, U+1E00-1E9F, U+1EF2-1EFF, U+2020, U+20A0-20AB, U+20AD-20C0, U+2113, U+2C60-2C7F, U+A720-A7FF;.}./ latin /.@font-face {. font-family: 'Outfit';. font-style: normal;. font-weight: 400;. font-display: swap;. src: url(https://fonts.gstatic.com/s/outfit/v11/QGYvz_MVcBeNP4NJtEtq.woff2) format('woff2');. unicode-range: U+0000-00FF, U+0131, U+0152-0153, U+02BB-02BC, U+02C6, U+02DA, U+02DC, U+0304, U+0308, U+0329, U+2000-206F, U+20AC, U+2122, U+2191, U+2193, U+2212, U+2215, U+FEFF, U+FFFD;.}./ latin-ext */.@font-face {. font-family: 'Outfit';. font-style: normal;. font-weight: 500;. font-display: swap;. src: url(https://fonts.gstatic.com/s/outfit/v11/Q

Chrome Cache Entry: 245

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	ASCII text, with very long lines (10635)
Category:	downloaded
Size (bytes):	240458
Entropy (8bit):	5.643971152609677
Encrypted:	false
SSDEEP:
MD5:	99398704ECEDB3A04D2225BF534CB0A6
SHA1:	218450B049E1593E7798D686E8FF9950989082FF
SHA-256:	D164C6A568FCA860C371902E6E658B4710EC32FF6060308060610FB72CD5CA01
SHA-512:	1E3B77C24429EB47DDAD634C71C03847BF46275A343CF0DC94CC83567BE47D1B030748447F72F25478031EAADBAF936B20A7CC53BC839680442D368A530BB6B7
Malicious:	false
Reputation:	unknown
URL:	https://maps.googleapis.com/maps/api/js?key=AIzaSyAm2omCTkMxX-BssosIGDwnBOubtKBCH2w
Preview:	..window.google = window.google \|\| {};.google.maps = google.maps \|\| {};.(function() {. . var modules = google.maps.modules = {};. google.maps.__gjsload__ = function(name, text) {. modules[name] = text;. };. . google.maps.Load = function(apiLoad) {. delete google.maps.Load;. apiLoad([0.009999999776482582,[null,[["https://khms0.googleapis.com/kh?v=989\u0026hl=en-US\u0026","https://khms1.googleapis.com/kh?v=989\u0026hl=en-US\u0026"],null,null,null,1,"989",["https://khms0.google.com/kh?v=989\u0026hl=en-US\u0026","https://khms1.google.com/kh?v=989\u0026hl=en-US\u0026"]],null,null,null,null,[["https://cbks0.googleapis.com/cbk?","https://cbks1.googleapis.com/cbk?"]],[["https://khms0.googleapis.com/kh?v=163\u0026hl=en-US\u0026","https://khms1.googleapis.com/kh?v=163\u0026hl=en-US\u0026"],null,null,null,null,"163",["https://khms0.google.com/kh?v=163\u0026hl=en-US\u0026","https://khms1.google.com/kh?v=163\u0026hl=en-US\u0026"]],null,null,null,null,null,null,null,[["https://streetv

Chrome Cache Entry: 246

Download File

Process:	C:\Program Files\Google\Chrome\Application\chrome.exe
File Type:	Web Open Font Format (Version 2), CFF, length 33156, version 1.0
Category:	downloaded
Size (bytes):	33156
Entropy (8bit):	7.993193046837352
Encrypted:	true
SSDEEP:
MD5:	97323D32D857E3B438655B379D680218
SHA1:	EA08DDB38B1F210094E524C417E5A698E3A71915
SHA-256:	2AD1A3CE85195C70B579486B5B5B7721A42A5613B35E4A96E68A2D95BCED9A3A
SHA-512:	18CCABEC537D04DDD696BF9000178DADC1EE8E08F26215419F87FE9BCA430B96AA5A4005EAFE703BB4876366E016EEBF2F2B3EBAC0386C77B84A96FF44A88295
Malicious:	false
Reputation:	unknown
URL:	https://use.typekit.net/af/e4b1a9/000000000000000077359571/30/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n6&v=3
Preview:	wOF2OTTO..............#.........................F...7?DYNA.W...?GDYN.q.."....`..,.6.$..8....1. ...........EE.g.&.........v....?...~...............z..~....,.........}...'.=ys...1J^z...4)i...eq.@c.H4..Eb..)....@........w.?.m.3@....2.e'/..c.c...-...]......-.+X(..V.+..y.....{~....;1..T.z...Rv.1k~.".m....E..+....Sv...9...$.K.O.........N.NU.J.(..i..gK...l;.2F.S1B.....#.j.....5..L.B..v. (F~9.&.....2`.8.r.M!U......4gO.v.{4w...ir..^?Z.jB.....E.y.T.....v....:R...O....V'[.F....OQ.MJ.....!M.%ov.<d...2.i.......T..2.$%_...JqP+.M3K.%.w>...s=v7..M.u#..]J!"J.8.G...G..!Q!D.=..p1B..%F..q........N...=...T..B5..C@..@...1`cp.4.@....R..c....R..W...!..H`.>.......)&....G...$.....?.7.0.0.C.P.06;T..X....G.+.faaaaaa......fa.....Z...B...#....,.g..D...!.#%..{S...}X...3.E....P.rQQr.M..._......KJ..(. yc..."p..H..pN1../...E..t..S.r.Re..;..m.b,]T].<O....S..!M.d......z.m.[..I.?.....!1nSP..BV.#QrA..@..oX....ICe.Dax..;...l....k.I..h../........@..OC...e...m"C..i...;.k.\.x...I

Static File Info

⊘No static file info

Description:	Adversaries may achieve persistence by adding a program to a startup folder or referencing it with a Registry run key. Adding an entry to the "run keys" in the Registry or startup folder will cause the program referenced to be executed when a user logs in.These programs will be executed under the context of the user and will have the account's associated permissions level.
Tactics:	Persistence, Privilege Escalation
Data Sources:	Command: Command Execution, File: File Modification, Process: Process Creation, Windows Registry: Windows Registry Key Creation, Windows Registry: Windows Registry Key Modification
Platforms:	Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may inject code into processes in order to evade process-based defenses as well as possibly elevate privileges. Process injection is a method of executing arbitrary code in the address space of a separate live process. Running code in the context of another process may allow access to the process's memory, system/network resources, and possibly elevated privileges. Execution via process injection may also evade detection from security products since the execution is masked under a legitimate process.
Tactics:	Defense Evasion, Privilege Escalation
Data Sources:	File: File Metadata, File: File Modification, Module: Module Load, Process: OS API Execution, Process: Process Access, Process: Process Metadata, Process: Process Modification
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may inject malicious code into process via Extra Window Memory (EWM) in order to evade process-based defenses as well as possibly elevate privileges. EWM injection is a method of executing arbitrary code in the address space of a separate live process.
Tactics:	Defense Evasion, Privilege Escalation
Data Sources:	Process: OS API Execution
Platforms:	Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may attempt to manipulate features of their artifacts to make them appear legitimate or benign to users and/or security tools. Masquerading occurs when the name or location of an object, legitimate or malicious, is manipulated or abused for the sake of evading defenses and observation. This may include manipulating file metadata, tricking users into misidentifying the file type, and giving legitimate task or service names.
Tactics:	Defense Evasion
Data Sources:	Command: Command Execution, File: File Metadata, File: File Modification, Image: Image Metadata, Process: OS API Execution, Process: Process Creation, Process: Process Metadata, Scheduled Job: Scheduled Job Metadata, Scheduled Job: Scheduled Job Modification, Service: Service Creation, Service: Service Metadata
Platforms:	Containers, Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may employ a known encryption algorithm to conceal command and control traffic rather than relying on any inherent protections provided by a communication protocol. Despite the use of a secure algorithm, these implementations may be vulnerable to reverse engineering if secret keys are encoded and/or generated within malware samples/configuration files.
Tactics:	Command and Control
Data Sources:	Network Traffic: Network Traffic Content
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may use an OSI non-application layer protocol for communication between host and C2 server or among infected hosts within a network. The list of possible protocols is extensive.Specific examples include use of network layer protocols, such as the Internet Control Message Protocol (ICMP), transport layer protocols, such as the User Datagram Protocol (UDP), session layer protocols, such as Socket Secure (SOCKS), as well as redirected/tunneled protocols, such as Serial over LAN (SOL).
Tactics:	Command and Control
Data Sources:	Network Traffic: Network Traffic Content, Network Traffic: Network Traffic Flow
Platforms:	Linux, macOS, Network, Windows
Url:	Open detailed description by Mitre

Description:	Adversaries may communicate using OSI application layer protocols to avoid detection/network filtering by blending in with existing traffic. Commands to the remote system, and often the results of those commands, will be embedded within the protocol traffic between the client and server.
Tactics:	Command and Control
Data Sources:	Network Traffic: Network Traffic Content, Network Traffic: Network Traffic Flow
Platforms:	Linux, macOS, Windows
Url:	Open detailed description by Mitre

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

Loading Joe Sandbox Report ...

Warning!

Windows Analysis Report https://www.eventcreate.com/e/11-7-24-raleigh-11th-hou-614158

Overview

General Information

Detection

Signatures

Classification

Process Tree

Yara Signatures

Sigma Signatures

Suricata Signatures

Joe Sandbox Signatures

Phishing

Compliance

Software Vulnerabilities

Networking

System Summary

Boot Survival

Mitre Att&ck Matrix

Screenshots

Thumbnails

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

Dropped Files

Unpacked PE Files

Domains

URLs

Domains and IPs

Contacted Domains

Contacted URLs

World Map of Contacted IPs

Public IPs

Private

General Information

Warnings

LLM Input / Output

Created / dropped Files

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk

C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk

Chrome Cache Entry: 129

Chrome Cache Entry: 131

Chrome Cache Entry: 133

Chrome Cache Entry: 134

Chrome Cache Entry: 135

Chrome Cache Entry: 139

Chrome Cache Entry: 140

Chrome Cache Entry: 141

Chrome Cache Entry: 142

Chrome Cache Entry: 145

Chrome Cache Entry: 147

Chrome Cache Entry: 148

Chrome Cache Entry: 149

Chrome Cache Entry: 151

Chrome Cache Entry: 154

Chrome Cache Entry: 155

Chrome Cache Entry: 157

Chrome Cache Entry: 158

Chrome Cache Entry: 159

Chrome Cache Entry: 160

Chrome Cache Entry: 161

Chrome Cache Entry: 163

Chrome Cache Entry: 164

Chrome Cache Entry: 165

Chrome Cache Entry: 166

Chrome Cache Entry: 168

Chrome Cache Entry: 169

Chrome Cache Entry: 170

Chrome Cache Entry: 171

Chrome Cache Entry: 172

Chrome Cache Entry: 173

Windows Analysis Report
https://www.eventcreate.com/e/11-7-24-raleigh-11th-hou-614158